Risk Scores
CVSS v3.0
7.800000190734863
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
0.24%
46.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| ruby-ffi_project | ruby-ffi | 0 |
| RubyGems | ffi | 0 |
Timeline
- CVE Published
- Dec 13, 2019 PoC Published
- Apr 14, 2021 EPSS Score
- Jun 22, 2021 EPSS Score
- Aug 23, 2021 EPSS Score
- Oct 24, 2021 EPSS Score
- Dec 25, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 25, 2022 EPSS Score
- Apr 28, 2022 EPSS Score
- Aug 31, 2022 EPSS Score
- Nov 1, 2022 EPSS Score
References
- https://github.com/ffi/ffi/commit/e0fe486df0e117ed67b0282b6ada04b7214ca05c url
- https://github.com/ffi/ffi/commit/09e0c6076466b4383da7fa4e13f714311109945a url
- https://nvd.nist.gov/vuln/detail/CVE-2018-1000201 advisory
- https://github.com/ffi/ffi package
- https://github.com/ffi/ffi/releases/tag/1.9.24 url
- https://github.com/rubysec/ruby-advisory-db/blob/master/gems/ffi/CVE-2018-1000201.yml url