CVE-2010-3299

Опубликовано: 12 нояб. 2019

Источник: ubuntu

Приоритет: negligible

CVSS2: 4.3

CVSS3: 6.5

Описание

The encrypt/decrypt functions in Ruby on Rails 2.3 are vulnerable to padding oracle attacks.

Релиз	Статус	Примечание
devel	not-affected	contains no code
esm-apps/xenial	not-affected	contains no code
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [contains no code]]
hardy	ignored	end of life
lucid	ignored	end of life
maverick	ignored	end of life
natty	ignored	end of life
oneiric	not-affected	contains no code
precise	not-affected	contains no code
precise/esm	DNE	precise was not-affected [contains no code]

Показывать по

Показывать по

4.3 Medium

CVSS2

6.5 Medium

CVSS3

CVE-2010-3299

CVSS3: 6.5

nvd

около 6 лет назад

The encrypt/decrypt functions in Ruby on Rails 2.3 are vulnerable to padding oracle attacks.

CVE-2010-3299

CVSS3: 6.5

debian

около 6 лет назад

The encrypt/decrypt functions in Ruby on Rails 2.3 are vulnerable to p ...

GHSA-wf6g-6673-f52f

github

больше 3 лет назад

The encrypt/decrypt functions in Ruby on Rails 2.3 are vulnerable to padding oracle attacks.

4.3 Medium

CVSS2

6.5 Medium

CVSS3