Security News > 2015 > June > Critical RubyGems vulns can lead to installation of malicious apps (Help Net Security)

Critical RubyGems vulns can lead to installation of malicious apps (Help Net Security)

2015-06-23 10:55

A serious vulnerability in RubyGems, a package manager for the Ruby programming language, can be exploited to trick end users into installing malware from attacker-controlled gem servers, Trustwave re...

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/oKkG-E3jI08/secworld.php

#rubygems #critical #security

Related news

MFA bypass becomes a critical security issue as ransomware tactics advance (source)
HPE patches three critical security holes in Aruba PAPI (source)
Two simple give-me-control security bugs found in Optigo network switches used in critical manufacturing (source)
CISA Warns of Critical Fortinet Flaw as Palo Alto and Cisco Issue Urgent Security Patches (source)
HPE Issues Critical Security Patches for Aruba Access Point Vulnerabilities (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Rubygems		7	0	21	12	1	34

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.