0.002 Low
EPSS
Percentile
64.8%
netaddr uses insecure file permissions. Certain Ruby files are configured with excessive permissions -rwxrwxrwx during GEM install, which would allow a local attacker to modify the files and execute arbitrary code.
-rwxrwxrwx
github.com/dspinhirne/netaddr-rb/commit/3aac46c00a36e71905eaa619cb94d45bff6e3b51
github.com/dspinhirne/netaddr-rb/pull/20
rubygems.org/gems/netaddr/versions