CVE-2014-1233

CVE-2014-1233

EPSS 0.4%

The paratrooper-pingdom gem 1.0.0 for Ruby allows local users to obtain the App-Key, username, and password values by listing the curl process.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://openwall.com/lists/oss-security/2014/01/08/1 http://www.vapid.dhs.org/advisories/paratrooper-api-key-pingdom.html