Lucene search

K

CVE-2017-0901

🗓️ 31 Aug 2017 20:00:29Reported by hackeroneType 
cve
 cve
🔗 web.nvd.nist.gov👁 124 Views

RubyGems version 2.6.12 and earlier fails to validate specification names, potentially allowing file overwrite

Show more
Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
Cvelist
CVE-2017-0901
31 Aug 201720:00
cvelist
Github Security Blog
RubyGems may allow a maliciously crafted gem to overwrite files
13 May 202201:38
github
NVD
CVE-2017-0901
31 Aug 201720:29
nvd
Prion
Design/Logic Flaw
31 Aug 201720:29
prion
RedhatCVE
CVE-2017-0901
11 Oct 201916:47
redhatcve
Hacker One
RubyGems: Installing a crafted gem package may create or overwrite files
26 Jun 201709:14
hackerone
0day.today
RubyGems < 2.6.13 - Arbitrary File Overwrite Exploit
4 Sep 201700:00
zdt
Debian CVE
CVE-2017-0901
31 Aug 201720:29
debiancve
OSV
CVE-2017-0901
31 Aug 201720:29
osv
OSV
RubyGems may allow a maliciously crafted gem to overwrite files
13 May 202201:38
osv
Rows per page
[
  {
    "product": "RubyGems",
    "vendor": "HackerOne",
    "versions": [
      {
        "status": "affected",
        "version": "Versions before 2.6.13"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
31 Aug 2017 20:29Current
8.4High risk
Vulners AI Score8.4
CVSS26.4
CVSS37.5
EPSS0.024
124
.json
Report