2 matches found
20yearrewards (>=1.0.7 <=1.0.8), 3pl-central (>=0.1.0 <=0.1.3) +210 more potentially affected by CVE-2019-5483 via seneca (>=0.4.2 <=3.7.0)
seneca NPM version =0.4.2, =1.0.7, =0.1.0, =0.0.0, =1.0.0, =1.0.0, =1.1.1, =1.0.0, =2.1.0, =1.5.0, =1.0.0, =3.0.0, =8.0.0 and more Source cves: CVE-2019-5483 Source advisory: OSV:GHSA-2XWV-3CC9-FP7C...
CVE-2019-5483
CVE-2019-5483 affects Seneca prior to 3.9.0, exposing environment variables when a process crashes. Connected sources (Red Hat, OSV, GHSA, npm advisory, Veracode) confirm Sensitive Data Exposure due to printing environment data in crash logs. Impact is information disclosure of sensitive data suc...