exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 7

CVE-2020-14001

больше 5 лет назад

The kramdown gem before 2.3.0 for Ruby processes the template option inside Kramdown documents by default, which allows unintended read access (such as template="/etc/passwd") or unintended embedded Ruby code execution (such as a string that begins with template="string://<%= `). NOTE: kramdown is used in Jekyll, GitLab Pages, GitHub Pages, and Thredded Forum.

CVSS3: 9.8

EPSS: Низкий

CVE-2020-14001

больше 5 лет назад

The kramdown gem before 2.3.0 for Ruby processes the template option inside Kramdown documents by default, which allows unintended read access (such as template="/etc/passwd") or unintended embedded Ruby code execution (such as a string that begins with template="string://<%= `). NOTE: kramdown is used in Jekyll, GitLab Pages, GitHub Pages, and Thredded Forum.

CVSS3: 9.1

EPSS: Низкий

CVE-2020-14001

больше 5 лет назад

The kramdown gem before 2.3.0 for Ruby processes the template option inside Kramdown documents by default, which allows unintended read access (such as template="/etc/passwd") or unintended embedded Ruby code execution (such as a string that begins with template="string://<%= `). NOTE: kramdown is used in Jekyll, GitLab Pages, GitHub Pages, and Thredded Forum.

CVSS3: 9.8

EPSS: Низкий

CVE-2020-14001

больше 5 лет назад

The kramdown gem before 2.3.0 for Ruby processes the template option i ...

CVSS3: 9.8

EPSS: Низкий

SUSE-SU-2022:3259-1

больше 3 лет назад

Security update for rubygem-kramdown

EPSS: Низкий

GHSA-mqm2-cgpr-p4m6

больше 5 лет назад

Unintended read access in kramdown gem

CVSS3: 9.8

EPSS: Низкий

BDU:2021-03178

больше 5 лет назад

Уязвимость компонента kramdown gem интерпретатора Ruby, позволяющая нарушителю выполнить произвольный код

CVSS3: 9.8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-14001 The kramdown gem before 2.3.0 for Ruby processes the template option inside Kramdown documents by default, which allows unintended read access (such as template="/etc/passwd") or unintended embedded Ruby code execution (such as a string that begins with template="string://<%= `). NOTE: kramdown is used in Jekyll, GitLab Pages, GitHub Pages, and Thredded Forum.	CVSS3: 9.8	9% Низкий	больше 5 лет назад
CVE-2020-14001 The kramdown gem before 2.3.0 for Ruby processes the template option inside Kramdown documents by default, which allows unintended read access (such as template="/etc/passwd") or unintended embedded Ruby code execution (such as a string that begins with template="string://<%= `). NOTE: kramdown is used in Jekyll, GitLab Pages, GitHub Pages, and Thredded Forum.	CVSS3: 9.1	9% Низкий	больше 5 лет назад
CVE-2020-14001 The kramdown gem before 2.3.0 for Ruby processes the template option inside Kramdown documents by default, which allows unintended read access (such as template="/etc/passwd") or unintended embedded Ruby code execution (such as a string that begins with template="string://<%= `). NOTE: kramdown is used in Jekyll, GitLab Pages, GitHub Pages, and Thredded Forum.	CVSS3: 9.8	9% Низкий	больше 5 лет назад
CVE-2020-14001 The kramdown gem before 2.3.0 for Ruby processes the template option i ...	CVSS3: 9.8	9% Низкий	больше 5 лет назад
SUSE-SU-2022:3259-1 Security update for rubygem-kramdown		9% Низкий	больше 3 лет назад
GHSA-mqm2-cgpr-p4m6 Unintended read access in kramdown gem	CVSS3: 9.8	9% Низкий	больше 5 лет назад
BDU:2021-03178 Уязвимость компонента kramdown gem интерпретатора Ruby, позволяющая нарушителю выполнить произвольный код	CVSS3: 9.8	9% Низкий	больше 5 лет назад

Уязвимостей на страницу