Low severity vulnerability that affects sensu

2018-07-23T19:50:22
ID GHSA-69MV-3642-WJ3W
Type github
Reporter GitHub Advisory Database
Modified 2019-07-03T21:02:01

Description

The sensu rubygem prior to version 1.2.0 contains a CWE-522 (Insufficiently Protected Credentials) flaw that can result in sensitive configuration data (e.g. passwords) being logged in clear-text.

Users are advised to upgrade to rubygem version 1.2.1 or later.