CVE-2017-8418

CVE-2017-8418

EPSS 0.4%

RuboCop 0.48.1 and earlier does not use /tmp in safe way, allowing local users to exploit this to tamper with cache files belonging to other users.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/bbatsov/rubocop/issues/4336 http://www.openwall.com/lists/oss-security/2017/05/01/14