CVE-2014-2734

Public Exploit

Description

The openssl extension in Ruby 2.x does not properly maintain the state of process memory after a file is reopened, which allows remote attackers to spoof signatures within the context of a Ruby script that attempts signature verification after performing a certain sequence of filesystem operations. NOTE: this issue has been disputed by the Ruby OpenSSL team and third parties, who state that the original demonstration PoC contains errors and redundant or unnecessarily-complex code that does not appear to be related to a demonstration of the issue. As of 20140502, CVE is not aware of any public comment by the original researcher

Category

5.8
CVSS
Severity: Medium
CVSS 2.0 •
EPSS 6.34% Top 10%
Affected: n/a n/a
Published at:
Updated at:

References

Link Tags
http://packetstormsecurity.com/files/126218/Ruby-OpenSSL-Private-Key-Spoofing.html exploit
http://www.osvdb.org/106006 vdb entry
https://news.ycombinator.com/item?id=7601973
http://www.securityfocus.com/bid/66956 vdb entry
http://seclists.org/fulldisclosure/2014/May/13 mailing list
https://gist.github.com/10446549
https://www.ruby-lang.org/en/news/2014/05/09/dispute-of-vulnerability-cve-2014-2734/
https://gist.github.com/emboss/91696b56cd227c8a0c13
https://github.com/adrienthebo/cve-2014-2734/
http://seclists.org/fulldisclosure/2014/Apr/231 exploit mailing list

Frequently Asked Questions

What is the severity of CVE-2014-2734?
CVE-2014-2734 has been scored as a medium severity vulnerability.
How to fix CVE-2014-2734?
To fix CVE-2014-2734, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2014-2734 being actively exploited in the wild?
It is possible that CVE-2014-2734 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~6% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.