CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
A vulnerability in the CGI component of the Ruby programming language is related to the occurrence of an interpretation conflict
when inserting unreliable input data into HTTP response header. Exploitation of the vulnerability allows
an attacker acting remotely to gain access to confidential data, compromise its integrity, and cause a denial of service.
and cause a denial of service