CVE-2017-8418 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	3.3 LOW	LOCAL	LOW	LOW	CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 19%

Vendor	Product	Version
rubocop_project	rubocop	𝑥 ≤ 0.48.1

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

rubocop

bullseye	0.89.1+dfsg-1 fixed
sid	1.39.0+dfsg-1 fixed
trixie	1.39.0+dfsg-1 fixed
bookworm	1.39.0+dfsg-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

rubocop

cosmic	not-affected
bionic	not-affected
artful	ignored
zesty	dne
yakkety	dne
xenial	dne
trusty	dne
precise	dne

Known Exploits!

Common Weakness Enumeration

CWE-668 - Exposure of Resource to Wrong Sphere
The product exposes a resource to the wrong control sphere, providing unintended actors with inappropriate access to the resource.

References

http://www.openwall.com/lists/oss-security/2017/05/01/14

https://github.com/bbatsov/rubocop/issues/4336

http://www.openwall.com/lists/oss-security/2017/05/01/14

https://github.com/bbatsov/rubocop/issues/4336