Vulnerability identifier: #VU11650
Vulnerability risk: High
Exploitation vector: Network
Exploit availability: No
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The weakness exists in owner command due to desereliazation of untrusted data. A remote attacker can execute arbitrary code.
Successful exploitation of the vulnerability may result in system compromise.
Update to version 2.7.6.
Vulnerable software versions
Ruby: 2.2.0 - 2.5.0
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?