Lucene search

CVE-2012-2126

🗓️ 01 Oct 2013 17:03:55Reported by redhatType

RubyGems before 1.8.23 allows remote attackers to modify gem via man-in-the-middle attack

Reporter	Title	Published	Views	Family All 51
Prion	Design/Logic Flaw	1 Oct 201317:55	–	prion
UbuntuCve	CVE-2012-2126	20 Apr 201200:00	–	ubuntucve
NVD	CVE-2012-2126	1 Oct 201317:55	–	nvd
Debian CVE	CVE-2012-2126	1 Oct 201317:55	–	debiancve
OSV	RubyGems does not verify SSL certificate	17 May 202204:54	–	osv
OSV	RHSA-2013:1203 Red Hat Security Advisory: rubygems security update	13 Sep 202408:02	–	osv
OSV	RHSA-2013:1441 Red Hat Security Advisory: rubygems security update	13 Sep 202408:26	–	osv
OSV	RHSA-2013:1852 Red Hat Security Advisory: Red Hat Enterprise MRG Grid 2.4 security update	13 Sep 202408:27	–	osv
Github Security Blog	RubyGems does not verify SSL certificate	17 May 202204:54	–	github
Cvelist	CVE-2012-2126	1 Oct 201317:00	–	cvelist

Nvd

Node

rubygems rubygemsRange≤1.8.22

rubygems rubygemsMatch1.8.0

rubygems rubygemsMatch1.8.1

rubygems rubygemsMatch1.8.2

rubygems rubygemsMatch1.8.3

rubygems rubygemsMatch1.8.4

rubygems rubygemsMatch1.8.5

rubygems rubygemsMatch1.8.6

rubygems rubygemsMatch1.8.7

rubygems rubygemsMatch1.8.8

rubygems rubygemsMatch1.8.9

rubygems rubygemsMatch1.8.10

rubygems rubygemsMatch1.8.11

rubygems rubygemsMatch1.8.12

rubygems rubygemsMatch1.8.13

rubygems rubygemsMatch1.8.14

rubygems rubygemsMatch1.8.15

rubygems rubygemsMatch1.8.16

rubygems rubygemsMatch1.8.17

rubygems rubygemsMatch1.8.18

rubygems rubygemsMatch1.8.19

rubygems rubygemsMatch1.8.20

rubygems rubygemsMatch1.8.21

AND

redhat openshiftMatch1.2.2enterprise

canonical ubuntu_linuxMatch12.04-lts

Source	Link
rhn	www.rhn.redhat.com/errata/RHSA-2013-1852.html
github	www.github.com/rubygems/rubygems/blob/1.8/History.txt
secunia	www.secunia.com/advisories/55381
openwall	www.openwall.com/lists/oss-security/2012/04/20/24
rhn	www.rhn.redhat.com/errata/RHSA-2013-1441.html
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
ubuntu	www.ubuntu.com/usn/USN-1582-1/
rhn	www.rhn.redhat.com/errata/RHSA-2013-1203.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

01 Oct 2013 17:55Current

6.1Medium risk

Vulners AI Score6.1

CVSS24.3

EPSS0.00317

CWE-310