CVE-2022-3474 | Bazel up to 4.2.2/5.3.1 Remote Assets API insufficiently protected credentials (GHSA-mxr8-q875-rhwq / EUVD-2022-42846)
A vulnerability, which was classified as problematic, has been found in Bazel up to 4.2.2/5.3.1. This vulnerability affects unknown code of the component Remote Assets API. Performing a manipulation results in insufficiently protected credentials.
This vulnerability is known as CVE-2022-3474. Remote exploitation of the attack is possible. No exploit is available.
It is advisable to upgrade the affected component.