Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-7g3v-4ggr-xvjf: Croc may expose secret to local users

An issue was discovered in Croc through 9.6.5. The shared secret, located on a command line, can be read by local users who list all processes and their arguments.

ghsa
#git

Croc may expose secret to local users

Moderate severity GitHub Reviewed Published Sep 20, 2023 to the GitHub Advisory Database • Updated Sep 21, 2023

Related news

CVE-2023-43621: security - croc: multiple issues in file sharing utility

An issue was discovered in Croc through 9.6.5. The shared secret, located on a command line, can be read by local users who list all processes and their arguments.

ghsa: Latest News

GHSA-x52f-h5g4-8qv5: Marp Core allows XSS by improper neutralization of HTML sanitization