ADVISORIES
- CVE-2014-5002 (NVD)
- GHSA-94cq-7ccq-cmcm
- OSVDB-108580
GEM
SEVERITY
CVSS v3.x: 7.8 (High)
PATCHED VERSIONS
- >= 1.0.0
DESCRIPTION
lynx Gem for Ruby contains a flaw in command/basic.rb that is due to the application exposing password information in plaintext in the process table. This may allow a local attacker to gain access to password information.