ID | CVE-2012-2125 | ||||||
Sažetak | RubyGems before 1.8.23 can redirect HTTPS connections to HTTP, which makes it easier for remote attackers to observe or modify a gem during installation via a man-in-the-middle attack. | ||||||
Reference |
|
||||||
CVSS |
|
||||||
Pristup |
|
||||||
Impact |
|
||||||
CVSS vektor | AV:N/AC:M/Au:N/C:P/I:P/A:N | ||||||
Zadnje važnije ažuriranje | 14-01-2014 - 04:17 | ||||||
Objavljeno | 01-10-2013 - 17:55 |