Skip to main content

Secure Headers

2 CVEs product

Monthly

CVE-2020-5217 Ruby MEDIUM POC PATCH This Month

In Secure Headers (RubyGem secure_headers), a directive injection vulnerability is present in versions before 3.8.0, 5.1.0, and 6.2.0. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Code Injection Secure Headers
NVD GitHub
CVSS 3.1
5.8
EPSS
1.8%
CVE-2020-5216 Ruby MEDIUM POC PATCH This Month

In Secure Headers (RubyGem secure_headers), a directive injection vulnerability is present in versions before 3.9.0, 5.2.0, and 6.3.0. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Code Injection Secure Headers
NVD GitHub
CVSS 3.1
5.8
EPSS
1.1%
EPSS 2% CVSS 5.8
MEDIUM POC PATCH This Month

In Secure Headers (RubyGem secure_headers), a directive injection vulnerability is present in versions before 3.8.0, 5.1.0, and 6.2.0. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Code Injection Secure Headers
NVD GitHub
EPSS 1% CVSS 5.8
MEDIUM POC PATCH This Month

In Secure Headers (RubyGem secure_headers), a directive injection vulnerability is present in versions before 3.9.0, 5.2.0, and 6.3.0. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Code Injection Secure Headers
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy