Exploit for #VU8057 Improper input validation in RubyGems
Vulnerability identifier: #VU8057
Vulnerability risk: Medium
CVSSv3.1: 7.8 [CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N/E:P/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-20
Exploitation vector: Network
Exploits in database: 1
- March 18, 2020
- RubyGems < 2.6.13 - Arbitrary File Overwrite [Exploit-DB]
Impact: Information disclosure and data manipulation
Vulnerable software:
RubyGems
Universal components / Libraries /
Libraries used by multiple products
Vendor: Ruby
