Lucene search

MitreCVE-2021-41816

HistoryFeb 06, 2022 - 9:15 p.m.

CVE-2021-41816

2022-02-0621:15:07

CWE-190

mitre

web.nvd.nist.gov

187

cve-2021-41816

integer overflow

buffer overflow

cgi.escape_html

ruby

nvd

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.4

Confidence

High

EPSS

0.012

Percentile

85.8%

JSON

CGI.escape_html in Ruby before 2.7.5 and 3.x before 3.0.3 has an integer overflow and resultant buffer overflow via a long string on platforms (such as Windows) where size_t and long have different numbers of bytes. This also affects the CGI gem before 0.3.1 for Ruby.

Affected configurations

Nvd

Node

ruby-langcgiRange<0.3.1ruby

Node

ruby-langcgiRange≤0.2.0ruby

AND

ruby-langrubyRange3.0.0–3.0.3

Node

ruby-langcgiRange≤0.1.0ruby

AND

ruby-langrubyRange2.7.0–2.7.5

Node

fedoraprojectfedoraMatch34

fedoraprojectfedoraMatch35

VendorProductVersionCPE
ruby-langcgi*cpe:2.3:a:ruby-lang:cgi:*:*:*:*:*:ruby:*:*
ruby-langruby*cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*
fedoraprojectfedora34cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
fedoraprojectfedora35cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ruby-lang	cgi	*	cpe:2.3:a:ruby-lang:cgi::::::ruby::*
ruby-lang	ruby	*	cpe:2.3:a:ruby-lang:ruby::::::::
fedoraproject	fedora	34	cpe:2.3:o:fedoraproject:fedora:34:::::::*
fedoraproject	fedora	35	cpe:2.3:o:fedoraproject:fedora:35:::::::*