Hackerone Private_address_check Ruby Gem
2 CVEs affecting Hackerone Private_address_check Ruby Gem. Latest disclosed: 2018-06-13. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-0909 | Critical | 9.8 | 2017-11-16 | The private_address_check ruby gem before 0.4.1 is vulnerable to a bypass due to an incomplete blacklist of common private/local network addresses used to prev… |
CVE-2018-3759 | | 2018-06-13 | private_address_check ruby gem before 0.5.0 is vulnerable to a time-of-check time-of-use (TOCTOU) race condition due to the address the socket uses not being c… |