Critical severity9.8NVD Advisory· Published Jan 6, 2017· Updated Jun 17, 2026
CVE-2016-2336
CVE-2016-2336
Description
Type confusion exists in two methods of Ruby's WIN32OLE class, ole_invoke and ole_query_interface. Attacker passing different type of object than this assumed by developers can cause arbitrary code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4Patches
Vulnerability mechanics
References
1- www.talosintelligence.com/reports/TALOS-2016-0029/nvdExploitTechnical DescriptionThird Party Advisory
News mentions
0No linked articles in our index yet.