[email protected]CVE-2018-8778

HistoryApr 03, 2018 - 10:29 p.m.

CVE-2018-8778

2018-04-0322:29:00

CWE-134

[email protected]

web.nvd.nist.gov

199

ruby

cve-2018-8778

buffer under-read

information disclosure

vulnerability

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

8.1 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.005 Low

EPSS

Percentile

74.8%

JSON

In Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1, an attacker controlling the unpacking format (similar to format string vulnerabilities) can trigger a buffer under-read in the String#unpack method, resulting in a massive and controlled information disclosure.

CPENameOperatorVersion
ruby-lang:rubyruby-lang rubylt2.3.7
ruby-lang:rubyruby-lang rubylt2.4.4
ruby-lang:rubyruby-lang rubylt2.5.1
ruby-lang:rubyruby-lang rubyeq2.6.0
ruby-lang:rubyruby-lang rubylt2.2.10
canonical:ubuntu_linuxcanonical ubuntu linuxeq16.04
canonical:ubuntu_linuxcanonical ubuntu linuxeq14.04
canonical:ubuntu_linuxcanonical ubuntu linuxeq17.10
debian:debian_linuxdebian debian linuxeq8.0
debian:debian_linuxdebian debian linuxeq7.0

CPE	Name	Operator	Version
ruby-lang:ruby	ruby-lang ruby	lt	2.3.7
ruby-lang:ruby	ruby-lang ruby	lt	2.4.4
ruby-lang:ruby	ruby-lang ruby	lt	2.5.1
ruby-lang:ruby	ruby-lang ruby	eq	2.6.0
ruby-lang:ruby	ruby-lang ruby	lt	2.2.10
canonical:ubuntu_linux	canonical ubuntu linux	eq	16.04
canonical:ubuntu_linux	canonical ubuntu linux	eq	14.04
canonical:ubuntu_linux	canonical ubuntu linux	eq	17.10
debian:debian_linux	debian debian linux	eq	8.0
debian:debian_linux	debian debian linux	eq	7.0