Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2022-1212
HistoryApr 05, 2022 - 4:15 a.m.

CVE-2022-1212

2022-04-0504:15:08
CWE-416
[email protected]
web.nvd.nist.gov
4
use-after-free
mruby
github
arbitrary code execution
vulnerability
exploitation

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

61.3%

JSON

Use-After-Free in str_escape in mruby/mruby in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited.

Affected configurations

Nvd
Node
mrubymrubyRange3.0.0
OR
mrubymrubyMatch3.1.0rc
OR
mrubymrubyMatch3.1.0rc2
VendorProductVersionCPE
mrubymruby*cpe:2.3:a:mruby:mruby:*:*:*:*:*:*:*:*
mrubymruby3.1.0cpe:2.3:a:mruby:mruby:3.1.0:rc:*:*:*:*:*:*
mrubymruby3.1.0cpe:2.3:a:mruby:mruby:3.1.0:rc2:*:*:*:*:*:*

Related

ubuntucve 1
cve 1
prion 1
rubygems 1
veracode 1
cvelist 1
alpinelinux 1
osv 2
huntr 1
debiancve 1
ubuntucve
ubuntucve
CVE-2022-1212
2022-04-05 00:00:00
cve
cve
CVE-2022-1212
2022-04-05 04:15:08
prion
prion
Design/Logic Flaw
2022-04-05 04:15:00
rubygems
rubygems
Use-After-Free in str_escape in mruby/mruby in mruby/mruby
2022-04-04 21:00:00
veracode
veracode
Denial Of Service (DoS)
2022-05-12 11:19:35
cvelist
cvelist
CVE-2022-1212 Use-After-Free in str_escape in mruby/mruby in mruby/mruby
2022-04-05 03:45:19
alpinelinux
alpinelinux
CVE-2022-1212
2022-04-05 04:15:00
osv
osv
CVE-2022-1212
2022-04-05 04:15:08
libmruby3_0_0-3.0.0-6.1 on GA media
2024-06-15 00:00:00
huntr
huntr
Use-After-Free in str_escape in mruby/mruby
2022-03-30 20:19:26
debiancve
debiancve
CVE-2022-1212
2022-04-05 04:15:08

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

61.3%

JSON
Related for NVD:CVE-2022-1212
ubuntucve1cve1prion1rubygems1veracode1cvelist1alpinelinux1osv2huntr1debiancve1