Safemode_project Safemode
2 CVEs affecting Safemode_project Safemode. Latest disclosed: 2017-07-21. Critical: 1, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2017-7540 | Critical | 9.8 | 2017-07-21 | rubygem-safemode, as used in Foreman, versions 1.3.2 and earlier are vulnerable to bypassing safe mode limitations via special Ruby syntax. This can lead to de… |
CVE-2016-3693 | High | 8.1 | 2016-05-20 | The Safemode gem before 1.2.4 for Ruby, when initialized with a delegate object that is a Rails controller, allows context-dependent attackers to obtain sensit… |