Lucene search

GoogleOSV:OPENSUSE-SU-2024:12397-1

HistoryJun 15, 2024 - 12:00 a.m.

ruby3.1-rubygem-rack-2.2-2.2.4-1.1 on GA media

2024-06-1500:00:00

Google

osv.dev

ruby3.1

rubygem

rack

2.2-2.2.4-1.1

opensuse tumbleweed

security issues

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

AI Score

7.3

Confidence

Low

JSON

These are all security issues fixed in the ruby3.1-rubygem-rack-2.2-2.2.4-1.1 package on the GA media of openSUSE Tumbleweed.

References

www.suse.com/security/cve/CVE-2013-0262

www.suse.com/security/cve/CVE-2013-0263

www.suse.com/security/cve/CVE-2015-3225

www.suse.com/security/cve/CVE-2018-16471

www.suse.com/security/cve/CVE-2019-16782

www.suse.com/security/cve/CVE-2020-8184

www.suse.com/security/cve/CVE-2022-30122

www.suse.com/security/cve/CVE-2022-30123

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

AI Score

7.3

Confidence

Low

JSON

Related for OSV:OPENSUSE-SU-2024:12397-1