private_address_check ruby gem before 0.5.0 is vulnerable to a time-of-check time-of-use (TOCTOU) race condition due to the address the socket uses not being checked. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required.
Race Condition
Information Disclosure
Private Address Check
NVD
GitHub
CVSS 3.0
3.7
EPSS
0.7%
Prev
Page 2 of 2