VDB
DEBIAN-CVE-2017-0899
DEBIAN-CVE-2017-0899
PUBLISHED
CVSS 9.800000190734863 CRITICAL
RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications that include terminal escape characters. Printing the gem specification would execute terminal escape sequences.
Risk Scores
CVSS v3.0
9.800000190734863
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:14 | rubygems | 0, 0, 0 |
| Debian:13 | rubygems | 0, 0, 0 |
| Debian:12 | rubygems | 0, 0, 0 |
| Debian:11 | rubygems | 0, 0, 0 |
Timeline
- Aug 31, 2017 CVE Published
- Apr 28, 2026 CVE Updated