CVE-2022-29810

2022-04-2706:15:40

Google

osv.dev

0.0004 Low

EPSS

Percentile

5.1%

JSON

The Hashicorp go-getter library before 1.5.11 does not redact an SSH key from a URL query parameter.

CPENameOperatorVersion
go-gettereq1.5.3
go-gettereq1.4.2
go-gettereq1.0.0
go-gettereq1.5.0
go-gettereq1.0.3
go-gettereq1.5.6
go-gettereq1.4.0
go-gettereq1.5.2
go-gettereq1.5.5
go-gettereq1.5.8

Name	Operator	Version
go-getter	eq	1.5.3
go-getter	eq	1.4.2
go-getter	eq	1.0.0
go-getter	eq	1.5.0
go-getter	eq	1.0.3
go-getter	eq	1.5.6
go-getter	eq	1.4.0
go-getter	eq	1.5.2
go-getter	eq	1.5.5
go-getter	eq	1.5.8