High severity7.5NVD Advisory· Published Sep 21, 2017· Updated May 13, 2026
CVE-2015-8559
CVE-2015-8559
Description
The knife bootstrap command in chef Infra client before version 15.4.45 leaks the validator.pem private RSA key to /var/log/messages.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- github.com/chef/chef/issues/3871nvdPatchThird Party Advisory
- www.openwall.com/lists/oss-security/2015/12/14/14nvdMailing ListThird Party Advisory
- discourse.chef.io/t/chef-infra-client-15-4-45-released/16081nvd
- github.com/chef/chef/pull/8885nvd
News mentions
0No linked articles in our index yet.