Vulnerability CVE-2009-4123
Published: 2023-12-12   Modified: 2023-12-14

Description:
The jruby-openssl gem before 0.6 for JRuby mishandles SSL certificate validation.

Type:

CWE-295

 (Certificate Issues)

Affected software
Jruby -> Jruby-openssl 

 References:
https://github.com/advisories/GHSA-xgv7-pqqh-h2w9
https://github.com/rubysec/ruby-advisory-db/blob/master/gems/jruby-openssl/CVE-2009-4123.yml
http://jruby.org/2009/12/07/vulnerability-in-jruby-openssl
https://web.archive.org/web/20101213091125/http://jruby.org/2009/12/07/vulnerability-in-jruby-openssl
Copyright 2024, cxsecurity.com

 

Back to Top