CVE-2018-3779
N/A
N/A
Summary
active-support ruby gem 5.2.0 could allow a remote attacker to execute arbitrary code on the system, caused by containing a malicious backdoor. An attacker could exploit this vulnerability to execute arbitrary code on the system.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| HackerOne | active-support ruby gem | 5.2.0 | affected |
Weaknesses
- CWE-77: Command Injection - Generic (CWE-77)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.