Rubygems Vulnérabilités

Chronologie

Version

3.0.06
3.0.16
3.0.26
2.6.05
2.6.15

Contre-mesures

Official Fix16
Temporary Fix0
Workaround0
Unavailable0
Not Defined8

Exploitabilité

High0
Functional0
Proof-of-Concept2
Unproven0
Not Defined22

Vecteur d'accès

Not Defined0
Physical0
Local0
Adjacent0
Network24

Authentification

Not Defined0
High0
Low3
None21

Interaction de l'utilisateur

Not Defined0
Required4
None20

C3BM Index

L'année dernière

CVSSv3 Base

≤10
≤20
≤30
≤40
≤50
≤65
≤79
≤86
≤93
≤101

CVSSv3 Temp

≤10
≤20
≤30
≤40
≤50
≤65
≤79
≤88
≤92
≤100

VulDB

≤10
≤20
≤30
≤41
≤51
≤67
≤78
≤86
≤90
≤101

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤89
≤93
≤103

CNA

≤10
≤20
≤30
≤40
≤51
≤60
≤70
≤82
≤91
≤101

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k0
<2k18
<5k6
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k24
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter le volume du marché

L'année dernière

🔴 CTI Activités

Affected Versions (75): 0.8.11, 0.9, 1.8, 1.8.1, 1.8.2, 1.8.3, 1.8.4, 1.8.5, 1.8.6, 1.8.7, 1.8.8, 1.8.9, 1.8.11, 1.8.12, 1.8.13, 1.8.14, 1.8.15, 1.8.16, 1.8.17, 1.8.18, 1.8.19, 1.8.21, 1.8.22, 1.8.23, 1.8.24, 1.8.25, 2, 2.0, 2.0.1, 2.0.2, 2.0.3, 2.0.4, 2.0.5, 2.0.6, 2.0.7, 2.0.8, 2.0.9, 2.0.11, 2.0.12, 2.0.13, 2.0.14, 2.0.15, 2.0.16, 2.1, 2.2, 2.2.1, 2.2.2, 2.2.3, 2.2.4, 2.4, 2.4.1, 2.4.2, 2.4.3, 2.4.4, 2.4.5, 2.4.6, 2.4.7, 2.6, 2.6.1, 2.6.2, 2.6.3, 2.6.4, 2.6.5, 2.6.6, 2.6.7, 2.6.8, 2.6.9, 2.6.11, 2.6.12, 2.6.13, 3, 3.0.1, 3.0.2, 4.0.0 Beta 1, 4.0.0 Beta 2

Type de logiciel: Programming Language Software

PubliéBaseTempVulnérabilité0dayAujourd'huiExpConCTICVE
12/01/20246.76.7RubyGems.org 2FA authentification faible$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2024-21654
17/08/20236.16.1RubyGems.org elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2023-40165
08/09/20228.18.0RubyGems.org Password Change authentification faible$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-36073
13/05/20227.06.8RubyGems Gem Upload elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-29218
06/05/20228.17.9Rubygems elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-29176
19/11/20197.06.8RubyGems Startup elévation de privilèges$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2012-6135
17/06/20197.47.4RubyGems CommandManager#run buffer overflow$0-$5k$0-$5kNot DefinedNot Defined0.07CVE-2019-8325
17/06/20197.57.5RubyGems elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-8324
17/06/20197.47.4RubyGems API Response GemcutterUtilities#with_response elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-8323
17/06/20197.47.4RubyGems API Response elévation de privilèges$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2019-8322

14 plus d'entrées ne sont pas affichées

🔒 Login Required

You need to signup and login to see more of the remaining 14 results.

PrécédentAperçuSuivant

Do you know our Splunk app?

Download it now for free!