CVE-2014-1233

CVE-2014-1233

EPSS 0.4%

The paratrooper-pingdom gem 1.0.0 for Ruby allows local users to obtain the App-Key, username, and password values by listing the curl process.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://openwall.com/lists/oss-security/2014/01/08/1 http://www.vapid.dhs.org/advisories/paratrooper-api-key-pingdom.html