ID de Prueba:	1.3.6.1.4.1.25623.1.1.2.2019.1597
Categoría:	Huawei EulerOS Local Security Checks
Título:	Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2019-1597)
Resumen:	The remote host is missing an update for the Huawei EulerOS 'ruby' package(s) announced via the EulerOS-SA-2019-1597 advisory.
Descripción:	Summary: The remote host is missing an update for the Huawei EulerOS 'ruby' package(s) announced via the EulerOS-SA-2019-1597 advisory. Vulnerability Insight: rubygems: Installing a malicious gem may lead to arbitrary code execution (CVE-2019-8324) rubygems: Escape sequence injection vulnerability in gem owner (CVE-2019-8322) rubygems: Escape sequence injection vulnerability in API response handling (CVE-2019-8323) rubygems: Escape sequence injection vulnerability in errors (CVE-2019-8325) Affected Software/OS: 'ruby' package(s) on Huawei EulerOS V2.0SP5. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2019-8322 https://hackerone.com/reports/315087 https://lists.debian.org/debian-lts-announce/2020/08/msg00027.html SuSE Security Announcement: openSUSE-SU-2019:1771 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html Common Vulnerability Exposure (CVE) ID: CVE-2019-8323 https://hackerone.com/reports/315081 Common Vulnerability Exposure (CVE) ID: CVE-2019-8324 https://hackerone.com/reports/328571 RedHat Security Advisories: RHSA-2019:1972 https://access.redhat.com/errata/RHSA-2019:1972 Common Vulnerability Exposure (CVE) ID: CVE-2019-8325 https://hackerone.com/reports/317353
Copyright	Copyright (C) 2020 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.