3 matches found
CVE-2014-4997
lib/commands/setup.rb in the point-cli gem 0.0.1 for Ruby places credentials on the curl command line, which allows local users to obtain sensitive information by listing the process...
CVE-2014-4997
lib/commands/setup.rb in the point-cli gem 0.0.1 for Ruby places credentials on the curl command line, which allows local users to obtain sensitive information by listing the process...
CVE-2014-4997
CVE-2014-4997 affects the Ruby point-cli gem (version 0.0.1). The issue is in lib/commands/setup.rb, where credentials are placed on the curl command line, allowing a local attacker to obtain sensitive information by listing the process. Impact is local plaintext credential disclosure; no remote ...