exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 10

CVE-2018-1000073

почти 8 лет назад

RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Directory Traversal vulnerability in install_location function of package.rb that can result in path traversal when writing to a symlinked basedir outside of the root. This vulnerability appears to have been fixed in 2.7.6.

CVSS3: 7.5

EPSS: Низкий

CVE-2018-1000073

почти 8 лет назад

CVSS3: 5.5

EPSS: Низкий

CVE-2018-1000073

почти 8 лет назад

CVSS3: 7.5

EPSS: Низкий

CVE-2018-1000073

почти 8 лет назад

RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: ...

CVSS3: 7.5

EPSS: Низкий

GHSA-gx69-6cp4-hxrj

больше 3 лет назад

RubyGems Link Following vulnerability

CVSS3: 7.5

EPSS: Низкий

BDU:2019-04183

почти 8 лет назад

Уязвимость функции install_location (package.rb) системы управления пакетами RubyGems, позволяющая нарушителю получить доступ к произвольным файлам

CVSS3: 7.5

EPSS: Низкий

ELSA-2019-2028

больше 6 лет назад

ELSA-2019-2028: ruby security update (MODERATE)

EPSS: Низкий

openSUSE-SU-2019:1771-1

больше 6 лет назад

Security update for ruby-bundled-gems-rpmhelper, ruby2.5

EPSS: Низкий

SUSE-SU-2019:1804-1

больше 6 лет назад

Security update for ruby-bundled-gems-rpmhelper, ruby2.5

EPSS: Низкий

SUSE-SU-2020:1570-1

больше 5 лет назад

Security update for ruby2.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2018-1000073 RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Directory Traversal vulnerability in install_location function of package.rb that can result in path traversal when writing to a symlinked basedir outside of the root. This vulnerability appears to have been fixed in 2.7.6.	CVSS3: 7.5	1% Низкий	почти 8 лет назад
CVE-2018-1000073 RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Directory Traversal vulnerability in install_location function of package.rb that can result in path traversal when writing to a symlinked basedir outside of the root. This vulnerability appears to have been fixed in 2.7.6.	CVSS3: 5.5	1% Низкий	почти 8 лет назад
CVE-2018-1000073 RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Directory Traversal vulnerability in install_location function of package.rb that can result in path traversal when writing to a symlinked basedir outside of the root. This vulnerability appears to have been fixed in 2.7.6.	CVSS3: 7.5	1% Низкий	почти 8 лет назад
CVE-2018-1000073 RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: ...	CVSS3: 7.5	1% Низкий	почти 8 лет назад
GHSA-gx69-6cp4-hxrj RubyGems Link Following vulnerability	CVSS3: 7.5	1% Низкий	больше 3 лет назад
BDU:2019-04183 Уязвимость функции install_location (package.rb) системы управления пакетами RubyGems, позволяющая нарушителю получить доступ к произвольным файлам	CVSS3: 7.5	1% Низкий	почти 8 лет назад
ELSA-2019-2028 ELSA-2019-2028: ruby security update (MODERATE)			больше 6 лет назад
openSUSE-SU-2019:1771-1 Security update for ruby-bundled-gems-rpmhelper, ruby2.5			больше 6 лет назад
SUSE-SU-2019:1804-1 Security update for ruby-bundled-gems-rpmhelper, ruby2.5			больше 6 лет назад
SUSE-SU-2020:1570-1 Security update for ruby2.1			больше 5 лет назад

Уязвимостей на страницу