Lucene search

ruby -- multiple vulnerabilities

🗓️ 28 Mar 2018 00:00:00Reported by FreeBSDType

Ruby vulnerabilities in WEBrick, tempfile, and directory traversa

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 199
Tenable Nessus	Slackware 14.2 / current : ruby (SSA:2018-088-01)	30 Mar 201800:00	–	nessus
Tenable Nessus	Fedora 27 : ruby (2018-a459acd54b)	7 Jun 201800:00	–	nessus
Tenable Nessus	FreeBSD : ruby -- multiple vulnerabilities (eb69bcf2-18ef-4aa2-bb0c-83b263364089)	30 Mar 201800:00	–	nessus
Tenable Nessus	Fedora 28 : ruby (2018-dd8162c004)	3 Jan 201900:00	–	nessus
Tenable Nessus	Debian DLA-1359-1 : ruby1.8 security update	24 Apr 201800:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP2 : ruby (EulerOS-SA-2018-1206)	3 Jul 201800:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.5.1 : ruby (EulerOS-SA-2018-1275)	18 Sep 201800:00	–	nessus
Tenable Nessus	Ubuntu 14.04 LTS / 16.04 LTS : Ruby vulnerabilities (USN-3626-1)	20 Oct 202300:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP3 : ruby (EulerOS-SA-2018-1207)	3 Jul 201800:00	–	nessus
Tenable Nessus	Debian DLA-1358-1 : ruby1.9.1 security update	24 Apr 201800:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
FreeBSD	any	noarch	ruby	2.3.0,1	UNKNOWN
FreeBSD	any	noarch	ruby	2.3.7,1	UNKNOWN

Source	Link
ruby-lang	www.ruby-lang.org/en/news/2018/03/28/ruby-2-4-4-released/
ruby-lang	www.ruby-lang.org/en/news/2018/03/28/large-request-dos-in-webrick-cve-2018-8777/
ruby-lang	www.ruby-lang.org/en/news/2018/03/28/buffer-under-read-unpack-cve-2018-8778/
ruby-lang	www.ruby-lang.org/en/news/2018/03/28/http-response-splitting-in-webrick-cve-2017-17742/
ruby-lang	www.ruby-lang.org/en/news/2018/03/28/poisoned-nul-byte-dir-cve-2018-8780/
ruby-lang	www.ruby-lang.org/en/news/2018/03/28/unintentional-file-and-directory-creation-with-directory-traversal-cve-2018-6914/
ruby-lang	www.ruby-lang.org/en/news/2018/03/28/ruby-2-3-7-released/
ruby-lang	www.ruby-lang.org/en/news/2018/03/28/ruby-2-5-1-released/
ruby-lang	www.ruby-lang.org/en/news/2018/03/28/poisoned-nul-byte-unixsocket-cve-2018-8779/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

28 Mar 2018 00:00Current

7.6High risk

Vulners AI Score7.6

CVSS27.5

CVSS39.1

EPSS0.01715