CVE-2024-27282

An issue was discovered in Ruby 3.x through 3.3.0. If attacker-supplied data is provided to the Ruby regex compiler, it is possible to extract arbitrary heap data relative to the start of the text, including pointers and sensitive strings. The fixed versions are 3.0.7, 3.1.5, 3.2.4, and 3.3.1.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.6 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L
mitreCNA
---
---
CISA-ADPADP
6.6 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L
CVEADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 28%
Debian logo
Debian Releases
Debian Product
Codename
ruby2.7
bullseye
vulnerable
bullseye (security)
2.7.4-1+deb11u5
fixed
ruby3.1
bookworm
3.1.2-7+deb12u1
fixed
bookworm (security)
3.1.2-7+deb12u1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
jruby
plucky
needs-triage
oracular
needs-triage
noble
needs-triage
mantic
ignored
jammy
dne
focal
needs-triage
bionic
needs-triage
xenial
needs-triage
trusty
needs-triage
ruby2.3
plucky
dne
oracular
dne
noble
dne
mantic
dne
jammy
dne
focal
dne
xenial
needs-triage
ruby2.5
plucky
dne
oracular
dne
noble
dne
mantic
dne
jammy
dne
focal
dne
bionic
needed
ruby2.7
plucky
dne
oracular
dne
noble
dne
mantic
dne
jammy
dne
focal
Fixed 2.7.0-5ubuntu1.13
released
ruby3.0
plucky
dne
oracular
dne
noble
dne
mantic
dne
jammy
Fixed 3.0.2-7ubuntu2.6
released
focal
dne
ruby3.1
plucky
dne
oracular
dne
noble
dne
mantic
Fixed 3.1.2-7ubuntu3.2
released
jammy
dne
focal
dne
ruby3.2
plucky
dne
oracular
dne
noble
Fixed 3.2.3-1ubuntu0.24.04.1
released
mantic
dne
jammy
dne
focal
dne
Common Weakness Enumeration
References
https://hackerone.com/reports/2122624
https://www.ruby-lang.org/en/news/2024/04/23/arbitrary-memory-address-read-regexp-cve-2024-27282/
https://hackerone.com/reports/2122624
https://security.netapp.com/advisory/ntap-20241011-0007/
https://www.ruby-lang.org/en/news/2024/04/23/arbitrary-memory-address-read-regexp-cve-2024-27282/