logo

Advisories

Weaknesses

Fixes

Requirements

Compliance

CVE-2018-1000060 sensu

Package

Manager: gem
Name: sensu
Vulnerable Version: <0

Severity

Level: Low

CVSS v3.1: N/A

CVSS v4.0: N/A

EPSS: 0.0045 pctl0.62739

Details

Low severity vulnerability that affects sensu The sensu rubygem prior to version 1.2.0 contains a CWE-522 (Insufficiently Protected Credentials) flaw that can result in sensitive configuration data (e.g. passwords) being logged in clear-text. Users are advised to upgrade to rubygem version 1.2.1 or later.

Metadata

Created: 2018-07-23T19:50:22Z
Modified: 2021-12-02T22:56:27Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2018/07/GHSA-69mv-3642-wj3w/GHSA-69mv-3642-wj3w.json
CWE IDs: []
Alternative ID: GHSA-69mv-3642-wj3w
Finding: N/A
Auto approve: 0