RSS   Vulnerabilities for 'Vagrant'   RSS

2021-03-09
 
CVE-2021-21361

CWE-532
 

 
The `com.bmuschko:gradle-vagrant-plugin` Gradle plugin contains an information disclosure vulnerability due to the logging of the system environment variables. When this Gradle plugin is executed in public CI/CD, this can lead to sensitive credentials being exposed to malicious actors. This is fixed in version 3.0.0.

 


Copyright 2024, cxsecurity.com

 

Back to Top