CVE-2014-1234CVE-2014-1234

Affected configuration(s):

cpe:/a:paratrooper-newrelic_project:paratrooper-newrelic:1.0.1:-:~-~-~ruby~~

Date published: 2014-01-10T07:02:51.777-05:00

Date last modified: 2014-01-10T12:57:30.427-05:00

CVSS Score: 2.1

Principal attack vector: LOCAL

Complexity:  LOW

Reference URL: http://openwall.com/lists/oss-security/2014/01/08/2

Summary: The paratrooper-newrelic gem 1.0.1 for Ruby allows local users to obtain the X-Api-Key value by listing the curl process.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *