VYPR
High severity8.8NVD Advisory· Published Sep 19, 2017· Updated Jun 17, 2026

CVE-2017-10784

CVE-2017-10784

Description

The Basic authentication code in WEBrick library in Ruby before 2.2.8, 2.3.x before 2.3.5, and 2.4.x through 2.4.1 allows remote attackers to inject terminal emulator escape sequences into its log and possibly execute arbitrary commands via a crafted user name.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
webrickRubyGems
< 1.4.01.4.0

Affected products

36

Patches

Vulnerability mechanics

References

29

News mentions

0

No linked articles in our index yet.