{"id":"CVE-2017-15112","details":"keycloak-httpd-client-install versions before 0.8 allow users to insecurely pass password through command line, leaking it via command history and process info to other local users.","aliases":["GHSA-89c9-3758-737w"],"modified":"2026-03-14T09:24:34.979164Z","published":"2018-01-20T00:29:00.517Z","references":[{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2019:2137"},{"type":"FIX","url":"https://github.com/jdennis/keycloak-httpd-client-install/commit/c3121b271abaaa1a76de2b9ae89dacde0105cd75"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/jdennis/keycloak-httpd-client-install","events":[{"introduced":"0"},{"fixed":"671fb011cda8ff809777f96d69bb837e60dd6861"},{"fixed":"c3121b271abaaa1a76de2b9ae89dacde0105cd75"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"0.8"}]}}],"versions":["RELEASE_0_1","RELEASE_0_2","RELEASE_0_3","RELEASE_0_4","RELEASE_0_5","RELEASE_0_6","RELEASE_0_7"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-15112.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}