Quarkus Vulnerability: Inadvertent Git Credentials Exposure
CVE-2024-1979

Currently unrated

Key Information:

Vendor: Red Hat
Status: Quarkus; Red Hat Build Of Quarkus
Vendor: CVE Published:; 13 March 2024

What is CVE-2024-1979?

A vulnerability was found in Quarkus. In certain conditions related to the CI process, git credentials could be inadvertently published, which could put the git repository at risk.

Affected Version(s)

quarkus 3.7.3

References

https://access.redhat.com/security/cve/CVE-2024-1979

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2266690

issue-trackingx_refsource_REDHAT

https://github.com/quarkusio/quarkus/issues/38055

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 13, 2024
Vulnerability Reserved
Feb 28, 2024

Red Hat

What is CVE-2024-1979?

Affected Version(s)

References

Timeline