Security Advisory

CVE-2021-21361

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-03-09 00:40:18

Last updated 2024-08-03 18:09:15

Assigner GitHub_M

State PUBLISHED

Description

The `com.bmuschko:gradle-vagrant-plugin` Gradle plugin contains an information disclosure vulnerability due to the logging of the system environment variables. When this Gradle plugin is executed in public CI/CD, this can lead to sensitive credentials being exposed to malicious actors. This is fixed in version 3.0.0.

← Browse all CVEs View on cve.org ↗