CVE-2015-3448

Published April 29th, 2015

View on NVD ↗

CVSS v3

N/A

CVSS v2

2.1

LOW

Affected

PROJECT

Description

REST client for Ruby (aka rest-client) before 1.7.3 logs usernames and passwords, which allows local users to obtain sensitive information by reading the log.

rest-client/rest-client

Simple HTTP and REST client for Ruby, inspired by microframework syntax for specifying actions.

GitHub

5.22K