CVE-2021-3779
6.5MEDIUMA malicious MySQL server can request local file content from a client using ruby-mysql prior to version 2.10.0 without explicit authorization from the user. This issue was resolved in version 2.10.0 a
게시됨: 6/28/2022업데이트됨: 11/21/2024
설명
A malicious MySQL server can request local file content from a client using ruby-mysql prior to version 2.10.0 without explicit authorization from the user. This issue was resolved in version 2.10.0 and later.
AI 분석AI 기반
영향받는 제품
ruby-mysql_projectruby-mysql
참조
- https://www.rapid7.com/blog/post/2022/06/28/cve-2021-3779-ruby-mysql-gem-client-file-read-fixed/ExploitMitigationThird Party Advisory
- https://www.rapid7.com/blog/post/2022/06/28/cve-2021-3779-ruby-mysql-gem-client-file-read-fixed/ExploitMitigationThird Party Advisory