Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2019-7615
HistoryJul 30, 2019 - 10:15 p.m.

CVE-2019-7615

2019-07-3022:15:12
Google
osv.dev
11

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

37.0%

JSON

A TLS certificate validation flaw was found in Elastic APM agent for Ruby versions before 2.9.0. When specifying a trusted server CA certificate via the ‘server_ca_cert’ setting, the Ruby agent would not properly verify the certificate returned by the APM server. This could result in a man in the middle style attack against the Ruby agent.

Related

osv 1
veracode 1
github 1
cvelist 1
rubygems 1
nvd 1
cve 1
prion 1
osv
osv
Elastic APM agent for Ruby vulnerable to Improper Certificate Validation
2022-05-24 16:51:49
veracode
veracode
Man-in-the-Middle (MitM)
2019-07-31 04:33:40
github
github
Elastic APM agent for Ruby vulnerable to Improper Certificate Validation
2022-05-24 16:51:49
cvelist
cvelist
CVE-2019-7615
2019-07-30 21:15:47
rubygems
rubygems
Elastic APM agent for Ruby vulnerable to Improper Certificate Validation
2022-05-23 21:00:00
nvd
nvd
CVE-2019-7615
2019-07-30 22:15:12
cve
cve
CVE-2019-7615
2019-07-30 22:15:12
prion
prion
Design/Logic Flaw
2019-07-30 22:15:00

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

37.0%

JSON
Related for OSV:CVE-2019-7615
osv1veracode1github1cvelist1rubygems1nvd1cve1prion1