PT-2015-6389 · Ruby · Rubygems

Published

2015-08-25

Updated

2025-09-29

CVE-2015-4020

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions RubyGems versions 2.0.x through 2.0.16 RubyGems versions 2.2.x through 2.2.4 RubyGems versions 2.3.x through 2.4.7

Description The issue allows remote attackers to redirect requests to arbitrary domains via a crafted DNS SRV record with a domain that is suffixed with the original domain name, also known as a "DNS hijack attack". This occurs because RubyGems does not validate the hostname when fetching gems or making API requests.

Recommendations For RubyGems versions 2.0.x through 2.0.16, update to version 2.0.17 or later. For RubyGems versions 2.2.x through 2.2.4, update to version 2.2.5 or later. For RubyGems versions 2.3.x through 2.4.7, update to version 2.4.8 or later.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

ALSA-2025_16880

CVE-2015-4020

GHSA-QV62-XFJ6-32XM

Affected Products

Rubygems

PT-2015-6389 · Ruby · Rubygems

CVE-2015-4020

Weakness Enumeration

Related Identifiers

Affected Products

References · 14