CVE-2015-2179

Published: Dic 12, 2023 Last Modified: Nov 21, 2024

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 5,5

Source: [email protected]

Attack Vector: local

Attack Complexity: low

Privileges Required: low

User Interaction: none

Scope: unchanged

Confidentiality: high

Integrity: none

Availability: none

Description

AI Translation Available

The xaviershay-dm-rails gem 0.10.3.8 for Ruby allows local users to discover MySQL credentials by listing a process and its arguments.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0005

Percentile

0,2th

Updated

EPSS Score Trend (Last 90 Days)

Application

Xaviershay-Dm-Rails by Xaviershay-Dm-Rails Porject

Product Information

Vendor Xaviershay-Dm-Rails Porject

Product Xaviershay-Dm-Rails

Version 0.10.3.8

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:xaviershay-dm-rails_porject:xaviershay-dm-rails:0.10.3.8:*:*:*:*:ruby:*:*

Common Platform Enumeration - Standardized vulnerability identification

http://www.vapid.dhs.org/advisory.php?v=115

Exploit Third Party Advisory

http://www.vapid.dhs.org/advisory.php?v=115

Exploit Third Party Advisory

http://www.vapid.dhs.org/advisory.php?v=115

CVE-2015-2179

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 90 Days)

Xaviershay-Dm-Rails by Xaviershay-Dm-Rails Porject

Product Information

Iscriviti alla newsletter