CVE-2017-1000037 - Vulnerability Details - OpenCVE

RVM automatically loads environment variables from files in $PWD resulting in command execution RVM vulnerable to command injection when automatically loading environment variables from files in $PWD RVM automatically executes hooks located in $PWD resulting in code execution RVM automatically installs gems as specified by files in $PWD resulting in code execution RVM automatically does "bundle install" on a Gemfile specified by .versions.conf in $PWD resulting in code execution

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Rvm Project	Rvm

Configuration 1 [-]

cpe:2.3:a:rvm_project:rvm:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://github.com/justinsteven/advisories/blob/master/2017_rvm_cd_command_execution.md

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2017-07-13T20:00:00.000Z

Updated: 2024-08-05T21:53:06.133Z

Reserved: 2017-07-10T00:00:00.000Z

Link: CVE-2017-1000037

Vulnrichment

No data.

NVD

Status : Modified

Published: 2017-07-17T13:18:17.140

Modified: 2026-05-13T00:24:29.033

Link: CVE-2017-1000037

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "dateAssigned": "2017-05-06T00:00:00.000Z", "datePublic": "2017-07-13T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "RVM automatically loads environment variables from files in $PWD resulting in command execution RVM vulnerable to command injection when automatically loading environment variables from files in $PWD RVM automatically executes hooks located in $PWD resulting in code execution RVM automatically installs gems as specified by files in $PWD resulting in code execution RVM automatically does \"bundle install\" on a Gemfile specified by .versions.conf in $PWD resulting in code execution"}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-13T19:57:01.000Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://github.com/justinsteven/advisories/blob/master/2017_rvm_cd_command_execution.md"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "DATE_ASSIGNED": "2017-05-06T20:43:28.285993", "ID": "CVE-2017-1000037", "REQUESTER": "justin@justinsteven.com", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "RVM automatically loads environment variables from files in $PWD resulting in command execution RVM vulnerable to command injection when automatically loading environment variables from files in $PWD RVM automatically executes hooks located in $PWD resulting in code execution RVM automatically installs gems as specified by files in $PWD resulting in code execution RVM automatically does \"bundle install\" on a Gemfile specified by .versions.conf in $PWD resulting in code execution"}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://github.com/justinsteven/advisories/blob/master/2017_rvm_cd_command_execution.md", "refsource": "MISC", "url": "https://github.com/justinsteven/advisories/blob/master/2017_rvm_cd_command_execution.md"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T21:53:06.133Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/justinsteven/advisories/blob/master/2017_rvm_cd_command_execution.md"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2017-1000037", "datePublished": "2017-07-13T20:00:00.000Z", "dateReserved": "2017-07-10T00:00:00.000Z", "dateUpdated": "2024-08-05T21:53:06.133Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:rvm_project:rvm:*:*:*:*:*:*:*:*", "matchCriteriaId": "B4933467-7525-4AFB-AC8D-803DEFDC25A4", "versionEndIncluding": "1.28.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "RVM automatically loads environment variables from files in $PWD resulting in command execution RVM vulnerable to command injection when automatically loading environment variables from files in $PWD RVM automatically executes hooks located in $PWD resulting in code execution RVM automatically installs gems as specified by files in $PWD resulting in code execution RVM automatically does \"bundle install\" on a Gemfile specified by .versions.conf in $PWD resulting in code execution"}, {"lang": "es", "value": "RVM carga autom\u00e1ticamente las variables de entorno de archivos en $PWD, resultando en una ejecuci\u00f3n del comando RVM vulnerable a la inyecci\u00f3n de comandos cuando las variables de entorno se cargan autom\u00e1ticamente de archivos en $PWD. RVM ejecuta autom\u00e1ticamente los hooks ubicados en $PWD, resultando en la ejecuci\u00f3n del c\u00f3digo. RVM instala autom\u00e1ticamente las gemas seg\u00fan lo especifican los archivos en $PWD resultando en la ejecuci\u00f3n del c\u00f3digo RVM haciendo autom\u00e1ticamente la \"bundle install\" en un Gemfile especificado por .versions.conf en $PWD resultando en la ejecuci\u00f3n del c\u00f3digo."}], "id": "CVE-2017-1000037", "lastModified": "2026-05-13T00:24:29.033", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-07-17T13:18:17.140", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/justinsteven/advisories/blob/master/2017_rvm_cd_command_execution.md"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "https://github.com/justinsteven/advisories/blob/master/2017_rvm_cd_command_execution.md"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}