CVE-2016-3693

Published May 20th, 2016

View on NVD ↗

CVSS v3

N/A

CVSS v2

6.8

MEDIUM

Affected

PROJECT

Description

The Safemode gem before 1.2.4 for Ruby, when initialized with a delegate object that is a Rails controller, allows context-dependent attackers to obtain sensitive information via the inspect method.

theforeman/foreman

an application that automates the lifecycle of servers

GitHub

2.87K