"TITLE":"CF CLI does not sanitize user's password in verbose/trace/debug"
},
"affects":{
"vendor":{
"vendor_data":[
{
"product":{
"product_data":[
{
"product_name":"CF CLI",
"version":{
"version_data":[
{
"affected":"<",
"version_name":"All",
"version_value":"v6.43.0"
}
]
}
}
]
},
"vendor_name":"Cloud Foundry"
}
]
}
},
"data_format":"MITRE",
"data_type":"CVE",
"data_version":"4.0",
"description":{
"description_data":[
{
"lang":"eng",
"value":"Cloud Foundry CLI, versions prior to v6.43.0, improperly exposes passwords when verbose/trace/debugging is turned on. A local unauthenticated or remote authenticated malicious user with access to logs may gain part or all of a users password."
