Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:14 a.m.4 views

CVE-2022-23506

Spinnaker is an open source, multi-cloud continuous delivery platform for releasing software changes, and Spinnaker's Rosco microservice produces machine images. Rosco prior to versions 1.29.2, 1.28.4, and 1.27.3 does not property mask secrets generated via packer builds. This can lead to exposur...

7.5CVSS6.6AI score0.00541EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/26 8:59 p.m.16 views

CVE-2014-6274 S3 and Glacier remotes creds embedded in the git repo were not encrypted

git-annex had a bug in the S3 and Glacier remotes where if embedcreds=yes was set, and the remote used encryption=pubkey or encryption=hybrid, the embedded AWS credentials were stored in the git repository in effectively plaintext, not encrypted as they were supposed to be. This issue affects...

0.00153EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/26 8:59 p.m.4 views

CVE-2014-6274 S3 and Glacier remotes creds embedded in the git repo were not encrypted

git-annex had a bug in the S3 and Glacier remotes where if embedcreds=yes was set, and the remote used encryption=pubkey or encryption=hybrid, the embedded AWS credentials were stored in the git repository in effectively plaintext, not encrypted as they were supposed to be. This issue affects...

7AI score0.00153EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/06/23 12:0 a.m.4 views

PT-2023-17241 · Unknown · Orangescrum

Name of the Vulnerable Software and Affected Versions: OrangeScrum version 2.0.11 Description: The issue allows an external attacker to remotely obtain AWS instance credentials. This is possible because the application does not properly validate the HTML content to be converted to PDF...

7.6CVSS7.2AI score0.00576EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2023/01/03 8:4 p.m.10 views

CVE-2022-23506 Spinnaker's Rosco microservice vulnerable to improper log masking on AWS Packer builds

Spinnaker is an open source, multi-cloud continuous delivery platform for releasing software changes, and Spinnaker's Rosco microservice produces machine images. Rosco prior to versions 1.29.2, 1.28.4, and 1.27.3 does not property mask secrets generated via packer builds. This can lead to exposur...

4.3CVSS5.5AI score0.00541EPSS
Exploits0References2
Rows per page
Query Builder