Описание
The Ruby One Time Password library (ROTP) is an open source library for generating and validating one time passwords. Affected versions had overly permissive default permissions. Users should patch to version 6.3.0. Users unable to patch may correct file permissions after installation.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | Upstream issue only |
| esm-apps/bionic | not-affected | Upstream issue only |
| esm-apps/focal | not-affected | Upstream issue only |
| esm-apps/jammy | not-affected | Upstream issue only |
| esm-apps/noble | not-affected | Upstream issue only |
| esm-apps/xenial | not-affected | Upstream issue only |
| focal | not-affected | Upstream issue only |
| jammy | not-affected | Upstream issue only |
| mantic | not-affected | Upstream issue only |
| noble | not-affected | Upstream issue only |
Показывать по
EPSS
5.3 Medium
CVSS3
Связанные уязвимости
The Ruby One Time Password library (ROTP) is an open source library for generating and validating one time passwords. Affected versions had overly permissive default permissions. Users should patch to version 6.3.0. Users unable to patch may correct file permissions after installation.
The Ruby One Time Password library (ROTP) is an open source library fo ...
ROTP 6.2.2 and 6.2.1 has 0666 permissions for the .rb files.
EPSS
5.3 Medium
CVSS3