Lucene search
+L

6 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-8941

Malware in sbrugna...

9.8CVSS9.2AI score0.05913EPSS
Exploits1References15
susecve
susecve
added 2023/02/15 4:36 a.m.5 views

SUSE CVE-2017-17790

The lazyinitialize function in lib/resolv.rb in Ruby through 2.4.3 uses Kernelopen, which might allow Command Injection attacks, as demonstrated by a Resolv::Hosts::new argument beginning with a '|' character, a different vulnerability than CVE-2017-17405. NOTE: situations with untrusted input ma...

5.3CVSS9.6AI score0.05913EPSS
Exploits1References6
osv
osv
added 2017/12/20 9:29 a.m.49 views

CVE-2017-17790

The lazyinitialize function in lib/resolv.rb in Ruby through 2.4.3 uses Kernelopen, which might allow Command Injection attacks, as demonstrated by a Resolv::Hosts::new argument beginning with a '|' character, a different vulnerability than CVE-2017-17405. NOTE: situations with untrusted input ma...

9.8CVSS9.5AI score
Exploits0References9
attackerkb
attackerkb
added 2017/12/20 9:29 a.m.2 views

CVE-2017-17790

The lazyinitialize function in lib/resolv.rb in Ruby through 2.4.3 uses Kernelopen, which might allow Command Injection attacks, as demonstrated by a Resolv::Hosts::new argument beginning with a '|' character, a different vulnerability than CVE-2017-17405. NOTE: situations with untrusted input ma...

9.8CVSS7.2AI score0.73829EPSS
Exploits6References10
cve
cve
added 2017/12/20 9:0 a.m.184 views

CVE-2017-17790

CVE-2017-17790 affects Ruby up to 2.4.3 and is caused by the lazy_initialize function in lib/resolv.rb calling Kernel#open, which may allow command injection. The vulnerability can be triggered by a Resolv::Hosts::new argument that begins with a leading '|' character. The description notes this i...

9.8CVSS8.8AI score0.05913EPSS
Exploits1References9Affected Software1
ubuntucve
ubuntucve
added 2017/12/20 12:0 a.m.34 views

CVE-2017-17790

The lazyinitialize function in lib/resolv.rb in Ruby through 2.4.3 uses Kernelopen, which might allow Command Injection attacks, as demonstrated by a Resolv::Hosts::new argument beginning with a '|' character, a different vulnerability than CVE-2017-17405. NOTE: situations with untrusted input ma...

9.8CVSS6.8AI score0.05913EPSS
Exploits1References3
Rows per page
Query Builder