Summary
| Detail | |||
|---|---|---|---|
| Vendor | Mruby | First view | 2022-01-17 |
| Product | Mruby | Last view | 2022-05-31 |
| Version | 3.1.0 | Type | Application |
| Update | rc2 | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | ruby | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:a:mruby:mruby | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 7.8 | 2022-05-31 | CVE-2022-1934 | Use After Free in GitHub repository mruby/mruby prior to 3.2. |
| 7.8 | 2022-04-23 | CVE-2022-1427 | Out-of-bounds Read in mrb_obj_is_kind_of in in GitHub repository mruby/mruby prior to 3.2. # Impact: Possible arbitrary code execution if being exploited. |
| 9.8 | 2022-04-10 | CVE-2022-1286 | heap-buffer-overflow in mrb_vm_exec in mruby/mruby in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited. |
| 9.8 | 2022-04-10 | CVE-2022-1276 | Out-of-bounds Read in mrb_get_args in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited. |
| 9.8 | 2022-04-05 | CVE-2022-1212 | Use-After-Free in str_escape in mruby/mruby in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited. |
| 6.5 | 2022-04-02 | CVE-2022-1201 | NULL Pointer Dereference in mrb_vm_exec with super in GitHub repository mruby/mruby prior to 3.2. This vulnerability is capable of making the mruby interpreter crash, thus affecting the availability of the system. |
| 9.1 | 2022-03-27 | CVE-2022-1106 | use after free in mrb_vm_exec in GitHub repository mruby/mruby prior to 3.2. |
| 8.2 | 2022-03-26 | CVE-2022-1071 | User after free in mrb_vm_exec in GitHub repository mruby/mruby prior to 3.2. |
| 5.5 | 2022-03-10 | CVE-2022-0890 | NULL Pointer Dereference in GitHub repository mruby/mruby prior to 3.2. |
| 9.1 | 2022-02-23 | CVE-2022-0717 | Out-of-bounds Read in GitHub repository mruby/mruby prior to 3.2. |
| 5.5 | 2022-02-19 | CVE-2022-0632 | NULL Pointer Dereference in Homebrew mruby prior to 3.2. |
| 7.1 | 2022-02-19 | CVE-2022-0630 | Out-of-bounds Read in Homebrew mruby prior to 3.2. |
| 9.8 | 2022-02-18 | CVE-2022-0631 | Heap-based Buffer Overflow in Homebrew mruby prior to 3.2. |
| 9.1 | 2022-02-17 | CVE-2022-0623 | Out-of-bounds Read in Homebrew mruby prior to 3.2. |
| 5.5 | 2022-02-16 | CVE-2022-0614 | Use of Out-of-range Pointer Offset in Homebrew mruby prior to 3.2. |
| 9.8 | 2022-02-14 | CVE-2022-0570 | Heap-based Buffer Overflow in Homebrew mruby prior to 3.2. |
| 9.1 | 2022-02-09 | CVE-2022-0525 | Out-of-bounds Read in Homebrew mruby prior to 3.2. |
| 7.5 | 2022-02-04 | CVE-2022-0481 | NULL Pointer Dereference in Homebrew mruby prior to 3.2. |
| 5.5 | 2022-01-21 | CVE-2022-0326 | NULL Pointer Dereference in Homebrew mruby prior to 3.2. |
| 7.5 | 2022-01-17 | CVE-2022-0240 | mruby is vulnerable to NULL Pointer Dereference |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 30% (6) | CWE-476 | NULL Pointer Dereference |
| 30% (6) | CWE-125 | Out-of-bounds Read |
| 20% (4) | CWE-416 | Use After Free |
| 10% (2) | CWE-122 | Heap-based Buffer Overflow |
| 5% (1) | CWE-787 | Out-of-bounds Write |
| 5% (1) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
