This page collects WhisperX intelligence signals tagged #CVE-2020-10663. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
Ruby 核心文档工具 RDoc 的 3.12.2 版本被确认存在两个高危安全漏洞,最高严重性评分为 7.5(CVSS v3)。这两个漏洞均无官方修复补丁,且直接存在于项目的依赖链中,对使用该版本构建文档的 Ruby 项目构成了直接且持续的暴露风险。 漏洞详情显示,第一个漏洞(CVE-2020-10663,CVSS 7.5)存在于捆绑的 `json-1.8.6.gem` 库中,被标记为直接依赖。第二个漏洞(CVE-2021-31799,CVSS 7.0)则直接存在于 `rdoc-3.12.2.gem` 库本身。两份漏洞报告均明确指出,目前没有可用的官方修复版本(Fixed in: N/A),且漏洞利用成熟度尚未定义。这意味着攻击者...
A critical security vulnerability in the widely used Ruby `json` gem has resurfaced, forcing development teams to urgently update dependencies. The flaw, tracked as CVE-2020-10663, is an "Unsafe Object Creation Vulnerability" that affects the JSON gem through version 2.2.0. This vulnerability is notably similar to the ...