exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2019-11027

больше 6 лет назад

Ruby OpenID (aka ruby-openid) through 2.8.0 has a remotely exploitable flaw. This library is used by Rails web applications to integrate with OpenID Providers. Severity can range from medium to critical, depending on how a web application developer chose to employ the ruby-openid library. Developers who based their OpenID integration heavily on the "example app" provided by the project are at highest risk.

CVSS3: 9.8

EPSS: Низкий

CVE-2019-11027

больше 6 лет назад

Ruby OpenID (aka ruby-openid) through 2.8.0 has a remotely exploitable flaw. This library is used by Rails web applications to integrate with OpenID Providers. Severity can range from medium to critical, depending on how a web application developer chose to employ the ruby-openid library. Developers who based their OpenID integration heavily on the "example app" provided by the project are at highest risk.

CVSS3: 5.9

EPSS: Низкий

CVE-2019-11027

больше 6 лет назад

Ruby OpenID (aka ruby-openid) through 2.8.0 has a remotely exploitable flaw. This library is used by Rails web applications to integrate with OpenID Providers. Severity can range from medium to critical, depending on how a web application developer chose to employ the ruby-openid library. Developers who based their OpenID integration heavily on the "example app" provided by the project are at highest risk.

CVSS3: 9.8

EPSS: Низкий

CVE-2019-11027

больше 6 лет назад

Ruby OpenID (aka ruby-openid) through 2.8.0 has a remotely exploitable ...

CVSS3: 9.8

EPSS: Низкий

GHSA-fqfj-cmh6-hj49

больше 6 лет назад

ruby-openid SSRF via claimed_id request

CVSS3: 9.8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2019-11027 Ruby OpenID (aka ruby-openid) through 2.8.0 has a remotely exploitable flaw. This library is used by Rails web applications to integrate with OpenID Providers. Severity can range from medium to critical, depending on how a web application developer chose to employ the ruby-openid library. Developers who based their OpenID integration heavily on the "example app" provided by the project are at highest risk.	CVSS3: 9.8	2% Низкий	больше 6 лет назад
CVE-2019-11027 Ruby OpenID (aka ruby-openid) through 2.8.0 has a remotely exploitable flaw. This library is used by Rails web applications to integrate with OpenID Providers. Severity can range from medium to critical, depending on how a web application developer chose to employ the ruby-openid library. Developers who based their OpenID integration heavily on the "example app" provided by the project are at highest risk.	CVSS3: 5.9	2% Низкий	больше 6 лет назад
CVE-2019-11027 Ruby OpenID (aka ruby-openid) through 2.8.0 has a remotely exploitable flaw. This library is used by Rails web applications to integrate with OpenID Providers. Severity can range from medium to critical, depending on how a web application developer chose to employ the ruby-openid library. Developers who based their OpenID integration heavily on the "example app" provided by the project are at highest risk.	CVSS3: 9.8	2% Низкий	больше 6 лет назад
CVE-2019-11027 Ruby OpenID (aka ruby-openid) through 2.8.0 has a remotely exploitable ...	CVSS3: 9.8	2% Низкий	больше 6 лет назад
GHSA-fqfj-cmh6-hj49 ruby-openid SSRF via claimed_id request	CVSS3: 9.8	2% Низкий	больше 6 лет назад

Уязвимостей на страницу