Lucene search

K
cvelistRedhatCVELIST:CVE-2013-2065
HistoryNov 02, 2013 - 7:00 p.m.

CVE-2013-2065

2013-11-0219:00:00
redhat
www.cve.org

5.5 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.5%

(1) DL and (2) Fiddle in Ruby 1.9 before 1.9.3 patchlevel 426, and 2.0 before 2.0.0 patchlevel 195, do not perform taint checking for native functions, which allows context-dependent attackers to bypass intended $SAFE level restrictions.

5.5 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.5%