CVE-2014-5000 in lawn-login Geminfo

Zusammenfassung

von MITRE

The login function in lib/lawn.rb in the lawn-login gem 0.0.7 for Ruby places credentials on the curl command line, which allows local users to obtain sensitive information by listing the process.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

17.07.2014

Veröffentlichung

10.01.2018

Moderieren

akzeptiert

Eintrag

VDB-111594

CPE

bereit

CWE

CWE-200 (bestätigt)

CVSS

7.8 (NVD)

EPSS

0.00054

KEV

nein

Aktivitäten

very low

Sektor

Telecommunication

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2014-5000
NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-5000
CVE Details	https://www.cvedetails.com/cve/CVE-2014-5000/

◂ Zurück Übersicht Weiter ▸

Might our Artificial Intelligence support you?

Check our Alexa App!