VDB
CVE-2024-27281
CVE-2024-27281
PUBLISHED
EPSS 2.43% · 85.5th percentile
Risk Scores
EPSS Score
2.43%
85.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Amazon | ruby |
Exploit Intelligence
- RCE by parsing `.rdoc_options` in RDoc (hackerone)
- RCE by parsing `.rdoc_options` in RDoc (hackerone)
- RCE by parsing `.rdoc_options` in RDoc (hackerone)
- CVE-2024-27281: RCE vulnerability with .rdoc_options in RDoc (hackerone)
- CVE-2024-27281: RCE vulnerability with .rdoc_options in RDoc (hackerone)
- CVE-2024-27281: RCE vulnerability with .rdoc_options in RDoc (hackerone)
- https://hackerone.com/reports/1187477 (osv)
Timeline
- CVE Published
- Mar 29, 2024 PoC Published
- Jul 3, 2024 PoC Published
- Oct 4, 2024 Coalition ESS Score
- Oct 16, 2024 Coalition ESS Score
- Feb 14, 2025 EPSS Score
- Mar 17, 2025 EPSS Score
- Apr 15, 2025 EPSS Score
- Apr 29, 2025 EPSS Score
- Apr 30, 2025 EPSS Score
- May 4, 2025 EPSS Score
- Jun 1, 2025 EPSS Score
References
- ALAS2-2024-2634: ruby (medium) advisory
- ALAS2RUBY3.0-2024-008: ruby (medium) advisory