Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oauth-ruby project oauth-ruby vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2016-11086
lib/oauth/consumer.rb in the oauth-ruby gem up to and including 0.5.4 for Ruby does not verify server X.509 certificates if a certificate bundle cannot be found, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information.
Oauth-ruby Project Oauth-ruby
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started