Zowe CLI vulnerability puts secure credentials at risk
CVE-2024-6833

Currently unrated

Key Information:

Vendor: Zowe CLI
Vendor: CVE Published:; 17 July 2024

What is CVE-2024-6833?

A vulnerability in Zowe CLI allows local, privileged actors to store previously entered secure credentials in a plaintext file as part of an auto-init operation.

References

https://github.com/zowe/zowe-cli/

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 17, 2024

JSON