Lucene search

RubyGems Improper Verification of Cryptographic Signature vulnerability

🗓️ 13 May 2022 21:00:00Reported by RubySecType

RubyGems cryptographic signature vulnerability in Ruby versions 2.2 to 2.5

Reporter	Title	Published	Views	Family All 102
Prion	Input validation	13 Mar 201815:29	–	prion
RedhatCVE	CVE-2018-1000076	25 Feb 202013:31	–	redhatcve
OSV	RubyGems Improper Verification of Cryptographic Signature vulnerability	14 May 202201:01	–	osv
OSV	CVE-2018-1000076	13 Mar 201815:29	–	osv
OSV	jruby - security update	31 Mar 201800:00	–	osv
OSV	rubygems - security update	31 Mar 201800:00	–	osv
OSV	jruby - security update	8 Jun 201800:00	–	osv
OSV	RHSA-2020:0542 Red Hat Security Advisory: ruby security update	13 Sep 202419:56	–	osv
OSV	RHSA-2020:0591 Red Hat Security Advisory: ruby security update	13 Sep 202419:57	–	osv
OSV	RHSA-2020:0663 Red Hat Security Advisory: ruby security update	13 Sep 202419:57	–	osv

Vulners

Node

ruby rubygems\-updateRange≤2.7.6

Source	Link
github	www.github.com/rubygems/rubygems/commit/f5042b879259b1f1ce95a0c5082622c646376693

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 May 2022 21:00Current

2.7Low risk

Vulners AI Score2.7

CVSS27.5

CVSS39.8

EPSS0.01141