Ruby FFI

DATE	CVE	VULNERABILITY TITLE	RISK
2018-06-22	CVE-2018-1000201	Untrusted Search Path vulnerability in Ruby-Ffi Project Ruby-Ffi ruby-ffi version 1.9.23 and earlier has a DLL loading issue which can be hijacked on Windows OS, when a Symbol is used as DLL name instead of a String This vulnerability appears to have been fixed in v1.9.24 and later. network ruby-ffi-project microsoft CWE-426	6.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.