Miggo Logo

CVE-2018-16395: Ruby Openssl Allows Incorrect Value Comparison

9.8

CVSS Score
3.0

Basic Information

EPSS Score
0.91695%
CWE
-
Published
5/13/2022
Updated
7/24/2023
KEV Status
No
Technology
TechnologyRuby

Technical Details

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
opensslrubygems< 2.0.92.0.9
opensslrubygems>= 2.1.0, < 2.1.22.1.2

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis:
In progress

WAF Protection Rules

WAF Rule

*n issu* w*s *is*ov*r** in t** Op*nSSL li*r*ry in Ru*y w**n two `Op*nSSL::X***::N*m*` o*j**ts *r* *omp*r** usin* `==`, **p*n*in* on t** or**rin*, non-*qu*l o*j**ts m*y r*turn tru*. W**n t** *irst *r*um*nt is on* ***r**t*r lon**r t**n t** s**on*, or t

Reasoning

No *n*lysis *v*il**l*