ADVISORIES

• OSVDB-112683
• Vendor Advisory

GEM

as

PATCHED VERSIONS

None.

DESCRIPTION

as Gem for Ruby contains a flaw that is due to the program displaying credential information in plaintext in the process list. This may allow a local attacker to gain access to credential information.

RELATED

• https://security.snyk.io/vuln/SNYK-RUBY-AS-20195
• http://www.vapid.dhs.org/advisories/as-v1.0.html
• http://www.vapidlabs.com/advisory.php?v=17
• http://osvdb.org/show/osvdb/112683