Libcloud 0.12.3 through 0.13.2 does not set the scrub_data parameter for the destroy DigitalOcean API, which allows local users to obtain sensitive information by leveraging a new VM.
Max CVSS
2.1
EPSS Score
0.05%
Published
2014-01-07
Updated
2018-10-09
1 vulnerabilities found