Описание
Under specific conditions when processing a maliciously crafted value of type Hash r, Mongoid::Criteria.from_hash may allow for executing arbitrary Ruby code.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| ruby-mongo | not-affected | package |
Примечания
https://jira.mongodb.org/browse/MONGOID-5919
EPSS
Процентиль: 11%
0.00037
Низкий
Связанные уязвимости
CVSS3: 6.5
ubuntu
около 2 месяцев назад
Under specific conditions when processing a maliciously crafted value of type Hash r, Mongoid::Criteria.from_hash may allow for executing arbitrary Ruby code.
CVSS3: 6.5
nvd
около 2 месяцев назад
Under specific conditions when processing a maliciously crafted value of type Hash r, Mongoid::Criteria.from_hash may allow for executing arbitrary Ruby code.
CVSS3: 6.5
github
около 2 месяцев назад
Under specific conditions when processing a maliciously crafted value of type Hash r, Mongoid::Criteria.from_hash may allow for executing arbitrary Ruby code.
EPSS
Процентиль: 11%
0.00037
Низкий