| Detector: | Tikanga |
| Target: | project ' cloudstack2 ' version4.3.0 |
| Misuse: | misuse ' SV_CVE_14_9593_2 ' |
| Tags: |
Details about the known misuse from the MUBench dataset.
| Description: | Apache CloudStack before 4.3.2 and 4.4.x before 4.4.2 allows remote attackers to obtain private keys via a listSslCerts API call |
| Fix Description: | (see diff) |
| Violations: |
|
| In File: | org/apache/cloudstack/api/response/SslCertResponse.java |
| In Method: | setPrivatekey(String) |
| Code with Misuse: |
|
