Lucene search
GoogleOSV:GHSA-27RQ-4943-QCWPHistoryApr 28, 2022 - 12:00 a.m.
Insertion of Sensitive Information into Log File in Hashicorp go-getter
2022-04-2800:00:35
Google
osv.dev
23
0.0004 Low
EPSS
Percentile
5.1%
The Hashicorp go-getter library before 1.5.11 could write SSH credentials into its logfile, exposing sensitive credentials to local users able to read the logfile.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/hashicorp/go-getter | lt | 1.5.11 |
Related
prion
prion
Design/Logic Flaw
2022-04-27 06:15:00
cvelist
cvelist
CVE-2022-29810
2022-04-27 05:50:30
veracode
veracode
Information Disclosure
2022-04-28 04:21:22
osv
osv
CVE-2022-29810
2022-04-27 06:15:40
Exposure of SSH credentials in Rancher/Fleet
2022-04-27 21:09:13
github
github
Exposure of SSH credentials in Rancher/Fleet
2022-04-27 21:09:13
Insertion of Sensitive Information into Log File in Hashicorp go-getter
2022-04-28 00:00:35
redhatcve
redhatcve
CVE-2022-29810
2022-04-29 12:46:38
cve
cve
CVE-2022-29810
2022-04-27 06:15:40
debiancve
debiancve
CVE-2022-29810
2022-04-27 06:15:40
nvd
nvd
CVE-2022-29810
2022-04-27 06:15:40
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in IBM CloudPak for AIOps
2024-04-24 19:15:42
Security Bulletin: Multiple Vulnerabilities in CloudPak for AIOps
2024-01-31 19:31:55
