CVE Vulnerabilities

CVE-2014-0036

Published: Apr 17, 2014 | Modified: Apr 18, 2014
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
5.1 MODERATE
AV:N/AC:H/Au:N/C:P/I:P/A:P
RedHat/V3
Ubuntu

The rbovirt gem before 0.0.24 for Ruby uses the rest-client gem with SSL verification disabled, which allows remote attackers to conduct man-in-the-middle attacks via unspecified vectors.

Affected Software

Name Vendor Start Version End Version
Rbovirt Amos_benari * 0.0.23 (including)
Rbovirt Amos_benari 0.0.1 (including) 0.0.1 (including)
Rbovirt Amos_benari 0.0.2 (including) 0.0.2 (including)
Rbovirt Amos_benari 0.0.3 (including) 0.0.3 (including)
Rbovirt Amos_benari 0.0.4 (including) 0.0.4 (including)
Rbovirt Amos_benari 0.0.5 (including) 0.0.5 (including)
Rbovirt Amos_benari 0.0.6 (including) 0.0.6 (including)
Rbovirt Amos_benari 0.0.7 (including) 0.0.7 (including)
Rbovirt Amos_benari 0.0.8 (including) 0.0.8 (including)
Rbovirt Amos_benari 0.0.9 (including) 0.0.9 (including)
Rbovirt Amos_benari 0.0.10 (including) 0.0.10 (including)
Rbovirt Amos_benari 0.0.11 (including) 0.0.11 (including)
Rbovirt Amos_benari 0.0.12 (including) 0.0.12 (including)
Rbovirt Amos_benari 0.0.13 (including) 0.0.13 (including)
Rbovirt Amos_benari 0.0.14 (including) 0.0.14 (including)
Rbovirt Amos_benari 0.0.15 (including) 0.0.15 (including)
Rbovirt Amos_benari 0.0.16 (including) 0.0.16 (including)
Rbovirt Amos_benari 0.0.17 (including) 0.0.17 (including)
Rbovirt Amos_benari 0.0.18 (including) 0.0.18 (including)
Rbovirt Amos_benari 0.0.19 (including) 0.0.19 (including)
Rbovirt Amos_benari 0.0.20 (including) 0.0.20 (including)
Rbovirt Amos_benari 0.0.21 (including) 0.0.21 (including)
Rbovirt Amos_benari 0.0.22 (including) 0.0.22 (including)

References