Описание
The rest-client gem 1.6.10 through 1.6.13 for Ruby, as distributed on RubyGems.org, included a code-execution backdoor inserted by a third party. Versions <=1.6.9 and >=1.6.14 are unaffected.
Ссылки
- Issue TrackingThird Party Advisory
- Product
- Issue TrackingThird Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1Версия от 1.6.10 (включая) до 1.6.13 (включая)
cpe:2.3:a:rest-client_project:rest-client:*:*:*:*:*:ruby:*:*
EPSS
Процентиль: 84%
0.02163
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-94
Связанные уязвимости
CVSS3: 9.8
ubuntu
больше 6 лет назад
The rest-client gem 1.6.10 through 1.6.13 for Ruby, as distributed on RubyGems.org, included a code-execution backdoor inserted by a third party. Versions <=1.6.9 and >=1.6.14 are unaffected.
CVSS3: 9.8
redhat
больше 6 лет назад
The rest-client gem 1.6.10 through 1.6.13 for Ruby, as distributed on RubyGems.org, included a code-execution backdoor inserted by a third party. Versions <=1.6.9 and >=1.6.14 are unaffected.
CVSS3: 9.8
debian
больше 6 лет назад
The rest-client gem 1.6.10 through 1.6.13 for Ruby, as distributed on ...
EPSS
Процентиль: 84%
0.02163
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-94