Описание
The Safemode gem before 1.2.4 for Ruby, when initialized with a delegate object that is a Rails controller, allows context-dependent attackers to obtain sensitive information via the inspect method.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| foreman | itp | package |
EPSS
Процентиль: 72%
0.00732
Низкий
Связанные уязвимости
CVSS3: 3.1
redhat
почти 10 лет назад
The Safemode gem before 1.2.4 for Ruby, when initialized with a delegate object that is a Rails controller, allows context-dependent attackers to obtain sensitive information via the inspect method.
CVSS3: 8.1
nvd
больше 9 лет назад
The Safemode gem before 1.2.4 for Ruby, when initialized with a delegate object that is a Rails controller, allows context-dependent attackers to obtain sensitive information via the inspect method.
CVSS3: 8.1
github
больше 8 лет назад
safemode gem allows context-dependent attackers to obtain sensitive information via the inspect method
EPSS
Процентиль: 72%
0.00732
Низкий