CVE-2012-2126
CVSS v2.0
4.3 (Medium)
EPSS
0.30 % (70th)
Affected Products
3
Advisories
8
RubyGems before 1.8.23 does not verify an SSL certificate, which allows remote attackers to modify a gem during installation via a man-in-the-middle attack.
Weaknesses
- CWE-310
- Cryptographic Issues
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2013-10-01 17:55:03
(11 years ago) - Updated Date
-
2014-01-14 04:17:25
(10 years ago)
Affected Products
Loading...
Loading...
Configuration #1
AND |
|
---|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...