8.10.1
5 years ago
3 days ago
Known vulnerabilities in the @zowe/cli package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for freeVulnerability | Vulnerable Version |
---|---|
@zowe/cli is a Zowe CLI is a command line interface (CLI) that provides a simple and streamlined way to interact with IBM z/OS. Affected versions of this package are vulnerable to Plaintext Storage of a Password through the auto-init operation. An attacker can access sensitive information by exploiting the storage of secure credentials in plaintext. How to fix Plaintext Storage of a Password? Upgrade | >=7.18.0 <7.23.5 |