CVE-2017-14033
CVSS v3.0
7.5 (High)
CVSS v2.0
5 (Medium)
EPSS
1.83 % (89th)
Affected Products
1
Advisories
15
The decode method in the OpenSSL::ASN1 module in Ruby before 2.2.8, 2.3.x before 2.3.5, and 2.4.x through 2.4.1 allows attackers to cause a denial of service (interpreter crash) via a crafted string.
Weaknesses
- CWE-119
- Improper Restriction of Operations within the Bounds of a Memory Buffer
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2017-09-19 17:29:00
(7 years ago) - Updated Date
-
2018-10-31 10:29:06
(5 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...