CPE Details
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
CPE Name: cpe:2.3:a:mruby:mruby:3.0.0:-:*:*:*:ruby:*:*
Informations
Vendor
mrubyProduct
mrubyVersion
3.0.0Update
-Target Software
rubyRelated CVE
| CVE ID | Published | Description | Score | Severity |
|---|---|---|---|---|
| A vulnerability, which was classified as problematic, was found in mruby up to 3.4.0-rc2. Affected is the function scope_new of the file mrbgems/mruby-compiler/core/codegen.c of the component nregs Handler. The manipulation leads to heap-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The name of the patch is 1fdd96104180cc0fb5d3cb086b05ab6458911bb9. It is recommended to apply a patch to fix this issue. | 4.8 |
Medium |
||
| An Untrusted Pointer Dereference was discovered in function mrb_vm_exec in mruby before 3.1.0-rc. The vulnerability causes a segmentation fault and application crash. | 7.5 |
High |
||
| Use After Free in GitHub repository mruby/mruby prior to 3.2. | 7.8 |
High |
||
| Out-of-bounds Read in mrb_obj_is_kind_of in in GitHub repository mruby/mruby prior to 3.2. # Impact: Possible arbitrary code execution if being exploited. | 7.8 |
High |
||
| heap-buffer-overflow in mrb_vm_exec in mruby/mruby in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited. | 9.8 |
Critical |
||
| Out-of-bounds Read in mrb_get_args in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited. | 9.8 |
Critical |
||
| Use-After-Free in str_escape in mruby/mruby in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited. | 9.8 |
Critical |
||
| NULL Pointer Dereference in mrb_vm_exec with super in GitHub repository mruby/mruby prior to 3.2. This vulnerability is capable of making the mruby interpreter crash, thus affecting the availability of the system. | 6.5 |
Medium |
||
| use after free in mrb_vm_exec in GitHub repository mruby/mruby prior to 3.2. | 9.1 |
Critical |
||
| User after free in mrb_vm_exec in GitHub repository mruby/mruby prior to 3.2. | 8.2 |
High |
||
| NULL Pointer Dereference in GitHub repository mruby/mruby prior to 3.2. | 5.5 |
Medium |
||
| Out-of-bounds Read in GitHub repository mruby/mruby prior to 3.2. | 9.1 |
Critical |
||
| NULL Pointer Dereference in Homebrew mruby prior to 3.2. | 5.5 |
Medium |
||
| Out-of-bounds Read in Homebrew mruby prior to 3.2. | 7.1 |
High |
||
| Heap-based Buffer Overflow in Homebrew mruby prior to 3.2. | 9.8 |
Critical |
||
| Out-of-bounds Read in Homebrew mruby prior to 3.2. | 9.1 |
Critical |
||
| Use of Out-of-range Pointer Offset in Homebrew mruby prior to 3.2. | 5.5 |
Medium |
||
| Heap-based Buffer Overflow in Homebrew mruby prior to 3.2. | 9.8 |
Critical |
||
| Out-of-bounds Read in Homebrew mruby prior to 3.2. | 9.1 |
Critical |
||
| NULL Pointer Dereference in Homebrew mruby prior to 3.2. | 7.5 |
High |
||
| NULL Pointer Dereference in Homebrew mruby prior to 3.2. | 5.5 |
Medium |
||
| mruby is vulnerable to NULL Pointer Dereference | 7.5 |
High |
||
| An untrusted pointer dereference in mrb_vm_exec() of mruby v3.0.0 can lead to a segmentation fault or application crash. | 7.5 |
High |
||
| mruby is vulnerable to Heap-based Buffer Overflow | 9.8 |
Critical |
||
| mruby is vulnerable to NULL Pointer Dereference | 7.5 |
High |
||
| mruby is vulnerable to NULL Pointer Dereference | 7.5 |
High |
