Foreman · Foreman-Debug · CVE-2016-9593
**Name of the Vulnerable Software and Affected Versions**
foreman-debug versions prior to 1.15.0
**Description**
The issue is related to a flaw in foreman-debug's logging, which allows an attacker with access to the foreman log file to view passwords. This could enable the attacker to access those systems.
**Recommendations**
For versions prior to 1.15.0, update to version 1.15.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the foreman log file to minimize the risk of exploitation.