Quarkus Vulnerability: Inadvertent Git Credentials Exposure
CVE-2024-1979

Currently unrated

Key Information:

Vendor
Red Hat
Status
Quarkus
Red Hat Build Of Quarkus
Vendor
CVE Published:
13 March 2024

Summary

A vulnerability was found in Quarkus. In certain conditions related to the CI process, git credentials could be inadvertently published, which could put the git repository at risk.

Affected Version(s)

quarkus 3.7.3

References

https://access.redhat.com/security/cve/CVE-2024-1979
vdb-entryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2266690
issue-trackingx_refsource_REDHAT
https://github.com/quarkusio/quarkus/issues/38055

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.