CVE-2012-4522 : The rb_get_path_check function in file.c in Ruby 1.9.3 before patchlevel 286 and

The rb_get_path_check function in file.c in Ruby 1.9.3 before patchlevel 286 and Ruby 2.0.0 before r37163 allows context-dependent attackers to create files in unexpected locations or with unexpected names via a NUL byte in a file path.

Published 2012-11-24 20:55:03

Updated 2025-04-11 00:51:22

Source Red Hat, Inc.

View at NVD, CVE.org

Products affected by CVE-2012-4522

Ruby-lang » Ruby » Version: 2.0.0
cpe:2.3:a:ruby-lang:ruby:2.0.0:*:*:*:*:*:*:*
Matching versions
Ruby-lang » Ruby » Version: 1.9.3
cpe:2.3:a:ruby-lang:ruby:1.9.3:*:*:*:*:*:*:*
Matching versions

Threat overview for CVE-2012-4522

Top countries where our scanners detected CVE-2012-4522

Top open port discovered on systems with this issue 22

IPs affected by CVE-2012-4522 1,897

Threat actors abusing to this issue? Yes

Find out if you^* are affected by CVE-2012-4522!

^*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2012-4522

EPSS FAQ

0.50%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 65 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2012-4522

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:P/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None

CWE ids for CVE-2012-4522

CWE-264

Assigned by: nvd@nist.gov (Primary)

References for CVE-2012-4522

http://www.openwall.com/lists/oss-security/2012/10/12/6

oss-security - CVE request: ruby file creation due in insertion of illegal NUL character
http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=revision&revision=37163

[ruby] Revision 37163
http://rhn.redhat.com/errata/RHSA-2013-0129.html

RHSA-2013:0129 - Security Advisory - Red Hat Customer Portal

CVEs referencing this url
http://lists.fedoraproject.org/pipermail/package-announce/2012-October/090235.html

[SECURITY] Fedora 18 Update: ruby-1.9.3.286-19.fc18
http://www.openwall.com/lists/oss-security/2012/10/13/1

oss-security - Re: CVE request: ruby file creation due in insertion of illegal NUL character
http://www.ruby-lang.org/en/news/2012/10/12/poisoned-NUL-byte-vulnerability/

Unintentional file creation caused by inserting an illegal NUL character (CVE-2012-4522)
http://lists.fedoraproject.org/pipermail/package-announce/2012-October/090515.html

[SECURITY] Fedora 17 Update: ruby-1.9.3.286-18.fc17
http://www.openwall.com/lists/oss-security/2012/10/16/1

oss-security - Re: CVE request: ruby file creation due in insertion of illegal NUL character