CVE-2020-5422
CVE-2020-5422 : BOSH System Metrics Server releases prior to 0.1.0 expose the UAA password as a flag in a process argument on the BOSH director, making the password readable by any user/process on the same VM (e.g., via ps or examining process details). Affected product: BOSH System Metrics Serve...