GHSA-mx9f-w8qq-q5jf

Опубликовано: 24 окт. 2017

Источник: github

Github: Прошло ревью

Описание

rest-client allows local users to obtain sensitive information by reading the log

REST client for Ruby (aka rest-client) before 1.7.3 logs usernames and passwords, which allows local users to obtain sensitive information by reading the log.

Ссылки

Пакеты

Наименование

rest-client

rubygems

Затронутые версииВерсия исправления

< 1.7.3

1.7.3

EPSS

Процентиль: 20%

0.00065

Низкий

CVE ID

CVE-2015-3448

Дефекты

CWE-200

Связанные уязвимости

CVE-2015-3448

ubuntu

почти 11 лет назад

REST client for Ruby (aka rest-client) before 1.7.3 logs usernames and passwords, which allows local users to obtain sensitive information by reading the log.

CVE-2015-3448

redhat

около 11 лет назад

REST client for Ruby (aka rest-client) before 1.7.3 logs usernames and passwords, which allows local users to obtain sensitive information by reading the log.

CVE-2015-3448

nvd

почти 11 лет назад

REST client for Ruby (aka rest-client) before 1.7.3 logs usernames and passwords, which allows local users to obtain sensitive information by reading the log.

CVE-2015-3448

debian

почти 11 лет назад

REST client for Ruby (aka rest-client) before 1.7.3 logs usernames and ...

EPSS

Процентиль: 20%

0.00065

Низкий

CVE ID

CVE-2015-3448

Дефекты

CWE-200