2 matches found
CVE-2022-1766
CVE-2022-1766 affects Anchore Enterprise tooling (anchorectl) version 0.1.4, where credentials used to access the Anchore Enterprise API were improperly stored in the Software Bill of Materials (SBOM) generated by anchorectl. The issue enables exposure of access credentials via SBOM contents and ...
CVE-2022-1766
Anchore Enterprise anchorectl version 0.1.4 improperly stored credentials when generating a Software Bill of Materials. anchorectl will add the credentials used to access Anchore Enterprise API in the Software Bill of Materials SBOM generated by anchorectl. Users of anchorectl version 0.1.4 shoul...