exploitDog

GHSA-ww79-8xwv-932x

Опубликовано: 24 окт. 2017

Источник: github

Github: Прошло ревью

Описание

rbovirt uses the rest-client gem with SSL verification disabled

The rbovirt gem before 0.0.24 for Ruby uses the rest-client gem with SSL verification disabled, which allows remote attackers to conduct man-in-the-middle attacks via unspecified vectors.

Ссылки

Пакеты

Наименование

rbovirt

rubygems

Затронутые версииВерсия исправления

< 0.0.24

0.0.24

EPSS

Процентиль: 71%

0.00658

Низкий

CVE ID

Связанные уязвимости

CVE-2014-0036

redhat

почти 12 лет назад

The rbovirt gem before 0.0.24 for Ruby uses the rest-client gem with SSL verification disabled, which allows remote attackers to conduct man-in-the-middle attacks via unspecified vectors.

CVE-2014-0036

nvd

почти 12 лет назад

The rbovirt gem before 0.0.24 for Ruby uses the rest-client gem with SSL verification disabled, which allows remote attackers to conduct man-in-the-middle attacks via unspecified vectors.

EPSS

Процентиль: 71%

0.00658

Низкий

CVE ID