VDB

GCVE-110-MAGEIA-2020-186

GCVE-110-MAGEIA-2020-186
Advisory Published
Vulnetix · Advisory published May 5, 2020
Updated ruby-json packages fix security vulnerability: In ruby-json before 2.3.0, there is an unsafe object creation vulnerability. When parsing certain JSON documents, the json gem can be coerced into creating arbitrary objects in the target system (CVE-2020-10663).

Affected Products

VendorProductVersionsPlatforms
Mageiaruby-json0 (affected), 2.1.0-3.1.mga7 (unaffected), 0 (affected), 2.1.0-3.1.mga7 (unaffected)
Mageiaflash-player-plugin32.0.0.414-1.mga7.nonfree (unaffected), 0 (affected)

Browse GCVE Records

72,664 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›