CVE-2017-0899Improper Neutralization of Escape, Meta, or Control Sequences in Rubygems

CWE-150Improper Neutralization of Escape, Meta, or Control SequencesCWE-94Code InjectionCWE-138Improper Neutralization of Special Elements12 documents9 sources
Severity
9.8CRITICALNVD
OSV9.1
EPSS
7.4%
top 8.27%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
9
RubygemsHackerone RubygemsDebian Linux+6 more
Timeline
PublishedAug 31
Latest updateMay 13

Description

RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications that include terminal escape characters. Printing the gem specification would execute terminal escape sequences.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages6 packages

Debianrubygems/rubygems< 3.2.0~rc.1-1+3
NVDrubygems/rubygems2.6.12
CVEListV5hackerone/rubygemsVersions before 2.6.13

Also affects: Debian Linux 8.0, 9.0, Enterprise Linux 7.4, 7.6, 7.5

Patches

Patch: blog.rubygems.orgPatch: github.comPatch: github.com

🔴Vulnerability Details

5
GHSA
RubyGems Code Injection vulnerability2022-05-13
OSV
RubyGems Code Injection vulnerability2022-05-13
OSV
ruby1.9.1 vulnerabilities2017-10-05
OSV
CVE-2017-0899: RubyGems version 22017-08-31
CVEList
CVE-2017-0899: RubyGems version 22017-08-31

📋Vendor Advisories

3
Ubuntu
Ruby vulnerabilities2017-10-05
Red Hat
rubygems: Escape sequence in the "summary" field of gemspec2017-08-31
Debian
CVE-2017-0899: rubygems - RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem spe...2017

🕵️Threat Intelligence

1
Fortinet
The Analysis of Apache Struts 1 Form Field Input Validation Bypass (CVE-2015-0899)2017-10-25

💬Community

2
Bugzilla
CVE-2017-0899 CVE-2017-0900 CVE-2017-0901 CVE-2017-0902 rubygems: various flaws [fedora-all]2017-09-01
Bugzilla
CVE-2017-0899 rubygems: Escape sequence in the "summary" field of gemspec2017-09-01
CVE-2017-0899 — Rubygems vulnerability | cvebase