Vulnerabilities > CVE-2022-36562 - Unspecified vulnerability in Rubyinstaller Rubyinstaller2

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
rubyinstaller

Summary

Incorrect access control in the install directory (C:\Ruby31-x64) of Rubyinstaller2 v3.1.2 and below allows authenticated attackers to execute arbitrary code via overwriting binaries located in the directory.

Vulnerable Configurations

Part Description Count
Application
Rubyinstaller
1