Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2019-5477

Published: 16/08/2019 Updated: 14/10/2022
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Nokogiri

Vulnerability Summary

A command injection vulnerability in Nokogiri v1.10.3 and previous versions allows commands to be executed in a subprocess via Ruby's `Kernel.open` method. Processes are vulnerable only if the undocumented method `Nokogiri::CSS::Tokenizer#load_file` is being called with unsafe user input as the filename. This vulnerability appears in code generated by the Rexical gem versions v1.0.6 and previous versions. Rexical is used by Nokogiri to generate lexical scanner code for parsing CSS queries. The underlying vulnerability was addressed in Rexical v1.0.7 and Nokogiri upgraded to this version of Rexical in Nokogiri v1.10.4.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

nokogiri nokogiri

canonical ubuntu linux 16.04

canonical ubuntu linux 18.04

canonical ubuntu linux 19.04

canonical ubuntu linux 19.10

debian debian linux 8.0

debian debian linux 10.0

Vendor Advisories

Debian CVElist Bug Report Logs: ruby-nokogiri: CVE-2019-5477: command injection vulnerability
Debian Bug report logs - #934802 ruby-nokogiri: CVE-2019-5477: command injection vulnerability Package: src:ruby-nokogiri; Maintainer for src:ruby-nokogiri is Debian Ruby Extras Maintainers <pkg-ruby-extras-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 15 Aug 20 ...
Ubuntu Security Notice: ruby-nokogiri vulnerability
Nokogiri could be made to execute programs if it received specially crafted input ...

Mailing Lists

Full Disclosure: Nokogiri security update v1.10.4
<!--X-Body-Begin--> <!--X-User-Header--> oss-sec mailing list archives <!--X-User-Header-End--> <!--X-TopPNI--> By Date By Thread </form> <!--X-TopPNI-End--> <!--X-MsgBody--> <!--X-Subject-Header-Begin--> Nokogiri security update v1104 <!--X-Subject-Header-End--> <!--X-Head-of-Message--> From: Mike Dalessio &lt;mikedalessio ...

Github Repositories

https://github.com/Hamid-K/bookmarks

A personal list of various resources for those who are interested in learning about infosec and hacking and keeping themselves up to date. This is by no means a complete nor fresh list, but I occasionally add entries to lists.

A bookmark index of useful tools, articles and cheat-sheets useful for various types of projects Interesting writings and articles: WEB: PHP PHP File Inclusion tips websecwordpresscom/2010/02/22/exploiting-php-file-inclusion-overview/ Using PHP filter:// for LFI: wwwidontplaydartscom/2011/02/using-php-filter-for-local-file-inclusion/ PHP RFI using data://

References

CWE-78https://hackerone.com/reports/650835https://github.com/tenderlove/rexical/blob/master/CHANGELOG.rdochttps://github.com/sparklemotion/nokogiri/issues/1915https://lists.debian.org/debian-lts-announce/2019/09/msg00027.htmlhttps://usn.ubuntu.com/4175-1/https://security.gentoo.org/glsa/202006-05https://lists.debian.org/debian-lts-announce/2022/10/msg00018.htmlhttps://lists.debian.org/debian-lts-announce/2022/10/msg00019.htmlhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934802https://usn.ubuntu.com/4175-1/https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-25525CVE-2024-4652CVE-2024-1438CVE-2024-4671CVE-2024-34351arbitrary CVE-2024-4650SQL injectionoverflow
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook