CVE-2013-6480

Published January 7th, 2014

View on NVD ↗

CVSS v3

N/A

CVSS v2

2.1

LOW

Affected

PROJECT

Description

Libcloud 0.12.3 through 0.13.2 does not set the scrub_data parameter for the destroy DigitalOcean API, which allows local users to obtain sensitive information by leveraging a new VM.

fog/fog

The Ruby cloud services library.

GitHub

4.3K