VYPR

pass

by Pass

CVEs (1)

  • CVE-2020-28086HigDec 9, 2020
    risk 0.49cvss 7.5epss 0.01

    pass through 1.7.3 has a possibility of using a password for an unintended resource. For exploitation to occur, the user must do a git pull, decrypt a password, and log into a remote service with the password. If an attacker controls the central Git server or one of the other…