2 matches found
Sensitive Information Exposure
github.com/coder/coder/v2 is vulnerable to Sensitive Information Exposure. The vulnerability is due to logging of Workspace Agent manifests containing sensitive values in plaintext without sanitization, which allows an attacker with access to logs to retrieve confidential information...
Coder 日志信息泄露漏洞
Coder is an application from Coder Inc. that can set up development environments in public or private cloud infrastructures. A log information disclosure vulnerability exists in Coder versions 2.26.5, 2.27.7, and prior to 2.28.4, which stems from workspace agent manifests logging sensitive values...