What the vulnerability does

01Description

active-support ruby gem 5.2.0 could allow a remote attacker to execute arbitrary code on the system, caused by containing a malicious backdoor. An attacker could exploit this vulnerability to execute arbitrary code on the system.

Key dates

02Disclosure timeline

August 10, 2018 CVE published
August 5, 2024 Record updated