CVE-2022-28739
CVSS v3.1
7.5 (High)
CVSS v2.0
4.3 (Medium)
EPSS
0.55 % (78th)
Affected Products
3
Advisories
32
There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including Kernel#Float and String#to_f.
Weaknesses
- CWE-125
- Out-of-bounds Read
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2022-05-09 18:15:08
(2 years ago) - Updated Date
-
2024-01-24 05:15:12
(7 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...