CVE-2018-1000201

2018/1000xxx/CVE-2018-1000201.json

@@ -1,19 +1 @@
-{
-   "CVE_data_meta" : {
-      "ASSIGNER" : "cve@mitre.org",
-      "DATE_ASSIGNED" : "2018-06-04",
-      "ID" : "CVE-2018-1000201",
-      "STATE" : "RESERVED"
-   },
-   "data_format" : "MITRE",
-   "data_type" : "CVE",
-   "data_version" : "4.0",
-   "description" : {
-      "description_data" : [
-         {
-            "lang" : "eng",
-            "value" : "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem.  When the candidate has been publicized, the details for this candidate will be provided."
-         }
-      ]
-   }
-}
+{"CVE_data_meta":{"ASSIGNER":"kurt@seifried.org","DATE_ASSIGNED":"2018-04-06","ID":"CVE-2018-1000201","REQUESTER":"lars@greiz-reinsdorf.de","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"ruby-ffi ","version":{"version_data":[{"version_value":"1.9.23 and earlier"}]}}]},"vendor_name":"ruby-ffi"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"ruby-ffi version 1.9.23 and earlier has a DLL loading issue which can be hijacked on Windows OS, when a Symbol is used as DLL name instead of a String This vulnerability appears to have been fixed in v1.9.24 and later."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"CWE-427: Uncontrolled Search Path Element"}]}]},"references":{"reference_data":[{"name":"https://github.com/ffi/ffi/commit/e0fe486df0e117ed67b0282b6ada04b7214ca05c","refsource":"CONFIRM","url":"https://github.com/ffi/ffi/commit/e0fe486df0e117ed67b0282b6ada04b7214ca05c"},{"name":"https://github.com/ffi/ffi/commit/09e0c6076466b4383da7fa4e13f714311109945a","refsource":"CONFIRM","url":"https://github.com/ffi/ffi/commit/09e0c6076466b4383da7fa4e13f714311109945a"}]}}