hammer_cli_foreman 0.6.2

1 security vulnerability found in version 0.6.2

hammer_cli_foreman Improper Certificate Validation vulnerability

high severity CVE-2017-2667
high severity CVE-2017-2667
Patched versions: >= 0.10.0

Hammer CLI, a CLI utility for Foreman, before version 0.10.0, did not explicitly set the verify_ssl flag for apipie-bindings that disable it by default. As a result the server certificates are not checked and connections are prone to man-in-the-middle attacks.

No officially reported memory leakage issues detected.


This gem version does not have any officially reported memory leaked issues.

No license issues detected.


This gem version has a license in the gemspec.

This gem version is available.


This gem version has not been yanked and is still available for usage.