VDB
CVE-2013-0333
CVE-2013-0333
PUBLISHED
Une vulnérabilité a été corrigée dans <span class="textit">Ruby On Rails</span>. Elle concerne la partie JSON et peut mener un utilisateur malintentionné à exécuter du code arbitraire à distance.
EPSS 91.76% · 99.7th percentile
Risk Scores
EPSS Score
91.76%
99.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ruby on Rails | Ruby on Rails |
Exploit Intelligence
- heroku/heroku-CVE-2013-0333 (github-poc)
- heroku/heroku-CVE-2013-0333 (github-poc)
- heroku/heroku-CVE-2013-0333 (github-poc)
- heroku/heroku-CVE-2013-0333 (github-poc)
- heroku/heroku-CVE-2013-0333 (github-poc)
- heroku/heroku-CVE-2013-0333 (github-poc)
- heroku/heroku-CVE-2013-0333 (github-poc)
- heroku/heroku-CVE-2013-0333 (github-poc)
- Modified ruby script for RCE (github-poc)
- Modified ruby script for RCE (github-poc)
…and 70 more exploits
Timeline
- CVE Published
- Jan 30, 2013 PoC Published
- Sep 6, 2015 PoC Published
- Feb 4, 2022 EPSS Score
- Feb 3, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Oct 16, 2024 EPSS Score
- Mar 17, 2025 EPSS Score
- Mar 19, 2025 EPSS Score
- Mar 27, 2025 EPSS Score
- Mar 28, 2025 EPSS Score
- Mar 30, 2025 EPSS Score
References
- https://cert.ssi.gouv.fr/avis/CERTA-2013-AVI-074/ advisory
- https://cert.ssi.gouv.fr/avis/CERTA-2013-AVI-097/ advisory
- http://support.apple.com/kb/HT5644 advisory
- https://cert.ssi.gouv.fr/avis/CERTA-2013-AVI-187/ advisory
- http://support.apple.com/kb/HT5672 advisory
- https://cert.ssi.gouv.fr/avis/CERTA-2013-AVI-204/ advisory
- http://googlechromereleases.blogspot.fr/2013/03/stable-channel-update_26.html advisory
- https://cert.ssi.gouv.fr/avis/CERTA-2013-AVI-340/ advisory
- http://support.apple.com/kb/HT5784 advisory