CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2017-0271

Malware in sbrugna...

7.5CVSS6.1AI score0.01653EPSS

Exploits1References12

Github Security Blog•added 2017/10/24 6:33 p.m.•46 views

crack does not properly restrict casts of string values

The crack gem 0.3.1 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cause a denial of service memory and CPU consumption by leveraging Action Pack support for 1 YAML type...

7.5CVSS5.6AI score0.01653EPSS

Exploits1References9Affected Software1

OSV•added 2017/10/24 6:33 p.m.•81 views

GHSA-M7FQ-CF8Q-35Q7 crack does not properly restrict casts of string values

7.5CVSS7.7AI score0.01653EPSS

Exploits1References9

OSV•added 2013/04/09 8:55 p.m.•9 views

CVE-2013-1800

7.5AI score

Exploits0References7

OSV•added 2013/04/09 8:55 p.m.•3 views

DEBIAN-CVE-2013-1800

7.5CVSS9.3AI score0.01653EPSS

Exploits1References1

Prion•added 2013/04/09 8:55 p.m.•42 views

Type confusion

7.5CVSS7.7AI score0.91907EPSS

Exploits22References6Affected Software1

OSV•added 2013/04/09 8:55 p.m.•0 views

UBUNTU-CVE-2013-1800

7.5CVSS6.1AI score0.01653EPSS

Exploits1References2

CVE•added 2013/04/09 8:0 p.m.•109 views

CVE-2013-1800

CVE-2013-1800 concerns the crack gem for Ruby (0.3.1 and earlier). The issue arises from improper restriction of casts of string values, enabling potential object-injection and arbitrary code execution, or a denial of service, via Action Pack support for YAML type conversion or Symbol type conver...

7.5CVSS9.6AI score0.01653EPSS

Exploits1References6Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by