GHSA-hhxm-4f85-rgr8 – many_versioned_gem

Package

Manager: gem
Name: many_versioned_gem
Vulnerable Version: <0

Severity

Level: High

CVSS v3.1: N/A

CVSS v4.0: N/A

EPSS: N/A pctlN/A

Details

High severity vulnerability that affects many_versioned_gem ### Logs password in plaintext ### Impact Logs the password used in plaintext. The password should masked in logs to prevent it leaking. ### Patches Has the problem been patched? What versions should users upgrade to? ### Workarounds none ### See also Are there any links users can visit to find out more information? #### Package Ecosystem RubyGems #### Package Name many_versioned_gem #### Affected Versions < 0.2.2 #### Patches 0.2.3

Metadata

Created: 2019-02-05T16:25:34Z
Modified: 2020-06-16T21:40:22Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2019/02/GHSA-hhxm-4f85-rgr8/GHSA-hhxm-4f85-rgr8.json
CWE IDs: []
Alternative ID: N/A
Finding: N/A
Auto approve: 0