CVE-2021-21361 – The `com.bmuschko:gradle-vagrant-plugin` Gradle plugin contains an information disclosure …

9 March 2021

Vuln ID: CVE-2021-21361

Published: 2021-03-09 01:15:13Z

Description: The `com.bmuschko:gradle-vagrant-plugin` Gradle plugin contains an information disclosure vulnerability due to the logging of the system environment variables. When this Gradle plugin is executed in public CI/CD, this can lead to sensitive credentials being exposed to malicious actors. This is fixed in version 3.0.0.

Source: NVD.NIST.GOV

Date:

9 March 2021

Categorie(s):

NVD

Tag(s):

NVD

Top 5 MSP Cyberattacks in 2023/202426 April 2024
Flaws in Chinese keyboard apps leave 750 million users open to snooping, researchers claim26 April 2024
Most people still rely on memory or pen and paper for password management26 April 2024
LSA Whisperer: Open-source tools for interacting with authentication packages26 April 2024
What AI can tell organizations about their M&A risk26 April 2024