---
gem: rest-client
cve: 2015-3448
url: https://github.com/rest-client/rest-client/issues/349
date: 2015-04-29
title: rest-client ruby gem logs sensitive information
description: |
  REST client for Ruby (aka rest-client) before 1.7.3 logs usernames and
  passwords, which allows local users to obtain sensitive information by reading the
  log.

cvss_v2: 2.1

patched_versions:
  - ">= 1.7.3"