ID | CVE-2012-2126 | ||||||
Sažetak | RubyGems before 1.8.23 does not verify an SSL certificate, which allows remote attackers to modify a gem during installation via a man-in-the-middle attack. | ||||||
Reference |
|
||||||
CVSS |
|
||||||
Pristup |
|
||||||
Impact |
|
||||||
CVSS vektor | AV:N/AC:M/Au:N/C:N/I:P/A:N | ||||||
Zadnje važnije ažuriranje | 14-01-2014 - 04:17 | ||||||
Objavljeno | 01-10-2013 - 17:55 |