Lucene search

RubyGems Escape sequence injection vulnerability in api response handling

🗓️ 20 Jun 2019 16:57:05Reported by GitHub Advisory DatabaseType

RubyGems API response handling vulnerabilit

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 94
RedhatCVE	CVE-2019-8323	2 Apr 202008:32	–	redhatcve
Debian CVE	CVE-2019-8323	17 Jun 201920:15	–	debiancve
AlpineLinux	CVE-2019-8323	17 Jun 201920:15	–	alpinelinux
CVE	CVE-2019-8323	17 Jun 201920:15	–	cve
Prion	Design/Logic Flaw	17 Jun 201920:15	–	prion
NVD	CVE-2019-8323	17 Jun 201920:15	–	nvd
UbuntuCve	CVE-2019-8323	27 Mar 201900:00	–	ubuntucve
OSV	RubyGems Escape sequence injection vulnerability in api response handling	20 Jun 201916:05	–	osv
OSV	CVE-2019-8323	17 Jun 201920:15	–	osv
OSV	ruby2.1 - security update	29 Mar 201900:00	–	osv

Vulners

Node

rubygems-updateRange3.0.0–3.0.2

rubygems-updateRange2.6.0–2.7.9

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-8323
lists	www.lists.debian.org/debian-lts-announce/2020/08/msg00027.html
lists	www.lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
hackerone	www.hackerone.com/reports/315081
blog	www.blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
github	www.github.com/rubysec/ruby-advisory-db/blob/master/gems/rubygems-update/CVE-2019-8323.yml
github	www.github.com/advisories/GHSA-3h4r-pjv6-cph9

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Jun 2019 16:05Current

8.3High risk

Vulners AI Score8.3

CVSS25

CVSS37.5

EPSS0.00527

CWE-74