GoogleOSV:GHSA-PM9X-4392-2C2PRubyGems may allow a maliciously crafted gem to overwrite files
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
0.009 Low
EPSS
Percentile
82.3%
RubyGems versions 2.6.12 and earlier fail to validate specification names, allowing a maliciously crafted gem to potentially overwrite any file on the filesystem.
References
blog.rubygems.org/2017/08/27/2.6.13-released.html
access.redhat.com/errata/RHSA-2017:3485
access.redhat.com/errata/RHSA-2018:0378
access.redhat.com/errata/RHSA-2018:0583
access.redhat.com/errata/RHSA-2018:0585
github.com/rubygems/rubygems
github.com/rubygems/rubygems/commit/ad5c0a53a86ca5b218c7976765c0365b91d22cb2
hackerone.com/reports/243156
lists.debian.org/debian-lts-announce/2018/07/msg00012.html
nvd.nist.gov/vuln/detail/CVE-2017-0901
security.gentoo.org/glsa/201710-01
usn.ubuntu.com/3553-1
usn.ubuntu.com/3685-1
web.archive.org/web/20170907215801/www.securitytracker.com/id/1039249
web.archive.org/web/20170915000000*/www.securityfocus.com/bid/100580#:~:text=1%20snapshot-,16%3A05%3A26,-Note
www.debian.org/security/2017/dsa-3966
www.exploit-db.com/exploits/42611
Related
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
0.009 Low
EPSS
Percentile
82.3%