Lucene search

Safemode Gem Has Incomplete List of Disallowed Inputs

🗓️ 24 Oct 2017 18:35:33Reported by GitHub Advisory DatabaseType

rubygem-safemode vulnerability in Forema

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
Prion	Privilege escalation	21 Jul 201722:29	–	prion
CVE	CVE-2017-7540	21 Jul 201722:29	–	cve
RedhatCVE	CVE-2017-7540	20 Jul 201710:19	–	redhatcve
OSV	Safemode Gem Has Incomplete List of Disallowed Inputs	24 Oct 201718:33	–	osv
OSV	CVE-2017-7540	21 Jul 201722:29	–	osv
RubySec	Safemode Gem for Ruby is vulnerable to bypassing safe mode limitations	4 Apr 201721:00	–	rubygems
NVD	CVE-2017-7540	21 Jul 201722:29	–	nvd
Cvelist	CVE-2017-7540	21 Jul 201722:00	–	cvelist

Vulners

Node

safemode_project safemodeRange<1.3.2

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2017-7540
github	www.github.com/svenfuchs/safemode/pull/23
github	www.github.com/rubysec/ruby-advisory-db/blob/master/gems/safemode/CVE-2017-7540.yml
github	www.github.com/advisories/GHSA-5vx5-9q73-wgp4

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Oct 2017 18:33Current

9.2High risk

Vulners AI Score9.2

CVSS27.5

CVSS39.8

EPSS0.00289

CWE-184