JSON gem through 2.2.0 for Ruby has Unsafe Object Creation Vulnerabilit
Reporter | Title | Published | Views | Family All 199 |
---|---|---|---|---|
![]() | Rocky Linux 8 : pcs (RLSA-2020:2462) | 9 Feb 202200:00 | – | nessus |
![]() | FreeBSD : rubygem-json -- Unsafe Objection Creation Vulnerability in JSON (Additional fix) (40194e1c-6d89-11ea-8082-80ee73419af3) | 26 Mar 202000:00 | – | nessus |
![]() | Amazon Linux AMI : rubygem-json (ALAS-2020-1423) | 31 Aug 202000:00 | – | nessus |
![]() | Linux Distros Unpatched Vulnerability : CVE-2020-10663 | 4 Mar 202500:00 | – | nessus |
![]() | Debian DLA-2192-1 : ruby2.1 security update | 1 May 202000:00 | – | nessus |
![]() | Amazon Linux AMI : ruby19, ruby21 (ALAS-2020-1426) | 31 Aug 202000:00 | – | nessus |
![]() | EulerOS 2.0 SP2 : ruby (EulerOS-SA-2020-1686) | 17 Jun 202000:00 | – | nessus |
![]() | EulerOS 2.0 SP8 : ruby (EulerOS-SA-2020-1590) | 26 May 202000:00 | – | nessus |
![]() | CentOS 8 : pcs (CESA-2020:2462) | 1 Feb 202100:00 | – | nessus |
![]() | EulerOS Virtualization for ARM 64 3.0.6.0 : ruby (EulerOS-SA-2020-1691) | 25 Jun 202000:00 | – | nessus |
Parameter | Position | Path | Description | CWE |
---|---|---|---|---|
json_class | request body | json_cve_2020_10663 | The JSON gem has an unsafe object creation vulnerability that can lead to arbitrary object creation when parsing certain JSON documents. | CWE-20 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo