Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2015-4411

Опубликовано: 20 фев. 2020
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 5
CVSS3: 7.5

Описание

The Moped::BSON::ObjecId.legal? method in mongodb/bson-ruby before 3.0.4 as used in rubygem-moped allows remote attackers to cause a denial of service (worker resource consumption) via a crafted string. NOTE: This issue is due to an incomplete fix to CVE-2015-4410.

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

code not present
cosmic

not-affected

code not present
devel

not-affected

code not present
esm-apps/bionic

not-affected

code not present
esm-apps/xenial

not-affected

code not present
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was not-affected [code not present]]
precise

DNE

precise/esm

DNE

trusty

not-affected

code not present

Показывать по

Ссылки на источники

EPSS

Процентиль: 86%
0.0308
Низкий

5 Medium

CVSS2

7.5 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2015-4411

redhat
больше 10 лет назад

The Moped::BSON::ObjecId.legal? method in mongodb/bson-ruby before 3.0.4 as used in rubygem-moped allows remote attackers to cause a denial of service (worker resource consumption) via a crafted string. NOTE: This issue is due to an incomplete fix to CVE-2015-4410.

nvd логотип

CVE-2015-4411

CVSS3: 7.5
nvd
почти 6 лет назад

The Moped::BSON::ObjecId.legal? method in mongodb/bson-ruby before 3.0.4 as used in rubygem-moped allows remote attackers to cause a denial of service (worker resource consumption) via a crafted string. NOTE: This issue is due to an incomplete fix to CVE-2015-4410.

debian логотип

CVE-2015-4411

CVSS3: 7.5
debian
почти 6 лет назад

The Moped::BSON::ObjecId.legal? method in mongodb/bson-ruby before 3.0 ...

github логотип

GHSA-qh4w-7pw3-p4rp

CVSS3: 7.5
github
почти 6 лет назад

BSON rubygem contains potential denial of service

EPSS

Процентиль: 86%
0.0308
Низкий

5 Medium

CVSS2

7.5 High

CVSS3