Описание
Bournal before 1.4.1 on FreeBSD 8.0, when the -K option is used, places a ccrypt key on the command line, which allows local users to obtain sensitive information by listing the process and its arguments, related to "echoing."
Дополнительная информация
Статус:
Low
https://bugzilla.redhat.com/show_bug.cgi?id=568440bournal: updated version 1.4.1 fixes two vulnerabilities
EPSS
Процентиль: 20%
0.00063
Низкий
Связанные уязвимости
nvd
почти 16 лет назад
Bournal before 1.4.1 on FreeBSD 8.0, when the -K option is used, places a ccrypt key on the command line, which allows local users to obtain sensitive information by listing the process and its arguments, related to "echoing."
github
почти 4 года назад
Bournal before 1.4.1 on FreeBSD 8.0, when the -K option is used, places a ccrypt key on the command line, which allows local users to obtain sensitive information by listing the process and its arguments, related to "echoing."
EPSS
Процентиль: 20%
0.00063
Низкий