CVE-2023-43621

Опубликовано: 20 сент. 2023

Источник: debian

Описание

An issue was discovered in Croc through 9.6.5. The shared secret, located on a command line, can be read by local users who list all processes and their arguments.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
croc	itp			package

Связанные уязвимости

CVE-2023-43621

CVSS3: 4.7

nvd

больше 2 лет назад

An issue was discovered in Croc through 9.6.5. The shared secret, located on a command line, can be read by local users who list all processes and their arguments.

GHSA-7g3v-4ggr-xvjf

CVSS3: 4.7

github

больше 2 лет назад

Croc may expose secret to local users