Lucene search
MitreCVELIST:CVE-2018-1000077HistoryMar 13, 2018 - 3:00 p.m.
CVE-2018-1000077
2018-03-1315:00:00
mitre
raw.githubusercontent.com
3
RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Improper Input Validation vulnerability in ruby gems specification homepage attribute that can result in a malicious gem could set an invalid homepage URL. This vulnerability appears to have been fixed in 2.7.6.
Related
github
github
RubyGems Improper Input Validation vulnerability
2022-05-14 01:01:09
prion
prion
Input validation
2018-03-13 15:29:00
ubuntucve
ubuntucve
CVE-2018-1000077
2018-03-13 00:00:00
osv
osv
RubyGems Improper Input Validation vulnerability
2022-05-14 01:01:09
CVE-2018-1000077
2018-03-13 15:29:00
jruby - security update
2018-03-31 00:00:00
cve
cve
CVE-2018-1000077
2018-03-13 15:29:00
debiancve
debiancve
CVE-2018-1000077
2018-03-13 15:29:00
redhatcve
redhatcve
CVE-2018-1000077
2019-10-14 01:38:20
veracode
veracode
Improper Input Validation
2019-05-16 03:22:56
nessus
nessus
Debian DLA-1337-1 : jruby security update
2018-04-03 00:00:00
Debian DLA-1336-1 : rubygems security update
2018-04-02 00:00:00
EulerOS 2.0 SP3 : ruby (EulerOS-SA-2019-2250)
2019-11-08 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-1337-1)
2018-04-02 00:00:00
Debian: Security Advisory (DLA-1336-1)
2018-04-01 00:00:00
Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2019-2250)
2020-01-23 00:00:00
debian
debian
[SECURITY] [DLA 1337-1] jruby security update
2018-04-02 21:11:20
[SECURITY] [DLA 1336-1] rubygems security update
2018-04-01 17:18:56
[SECURITY] [DSA 4219-1] jruby security update
2018-06-08 09:32:09
f5
f5
K52952871 : Multiple RubyGems vulnerabilities
2022-02-16 00:00:00
K84262603 : Multiple Ruby vulnerabilities
2022-04-22 00:00:00
fedora
fedora
[SECURITY] Fedora 26 Update: ruby-2.4.3-87.fc26
2018-03-11 20:00:06
[SECURITY] Fedora 27 Update: ruby-2.4.3-87.fc27
2018-03-02 16:26:05
mageia
mageia
Updated jruby packages fix security vulnerability
2019-02-13 14:08:25
Updated ruby-RubyGems packages fix security vulnerability
2020-06-11 00:39:20
ubuntu
ubuntu
Ruby regression
2018-04-13 00:00:00
Ruby vulnerabilities
2018-04-05 00:00:00
amazon
amazon
Medium: ruby
2018-04-05 16:06:00
Medium: ruby20, ruby22, ruby23, ruby24
2018-04-04 23:18:00
Medium: ruby
2019-08-23 03:41:00
redhat
redhat
(RHSA-2020:0591) Moderate: ruby security update
2020-02-25 11:32:20
(RHSA-2020:0542) Moderate: ruby security update
2020-02-18 13:56:05
(RHSA-2020:0663) Moderate: ruby security update
2020-03-03 13:41:04
centos
centos
ruby, rubygem, rubygems security update
2019-08-30 04:17:17
oraclelinux
oraclelinux
ruby security update
2019-08-13 00:00:00
suse
suse
Security update for ruby-bundled-gems-rpmhelper, ruby2.5 (important)
2019-07-21 00:00:00
5.2 Medium
AI Score
Confidence
High
0.004 Low
EPSS
Percentile
72.7%
Related for CVELIST:CVE-2018-1000077