MinIO is an open source object storage server from MinIO, Inc. The product supports building infrastructure for machine learning, analytics, and application data workloads.MinIO is vulnerable to an information disclosure vulnerability that stems from the fact that in a cluster deployment MinIO returns all environment variables, including “MinIO_SSECRET_KEY” and “MinIO_ROOT_PASSWORD”, which can be exploited by attackers to cause information leakage.