CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Http.rb Project: Security Vulnerabilities

CVE-2015-1828

The Ruby http gem before 0.7.3 does not verify hostnames in SSL connections, which might allow remote attackers to obtain sensitive information via a man-in-the-middle-attack.

CVSS Score

5.9

EPSS Score

0.003

Published

2017-10-06

Page 1

Vulnerabilities

Vulnerable Software

Http.rb Project: Security Vulnerabilities

Products

Pricing

Contact Us