VIR Vulnerability Intelligence Relay

CVE-2023-27530

high
Published 2023-03-03 · Modified 2023-05-11
CVSS v3
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS v2
VIR risk
8.0

Description

Important: pcs security and bug fix update

Predictions

Exploit likelihood
30%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2023-2652.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2190092

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/8/ALSA-2023-3082.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2179649

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2176477

vendor Authored 2026-05-27

Vendor advisory: alma — https://access.redhat.com/errata/RHSA-2023:3082

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2023-27530

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2023:2652

vendor Authored 2026-05-27

Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2023-27530.html

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2023:3082

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2023:6818

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2023:2652

OS impact
OSVersionStatusFixed in
redhat rhel9fixed
rockylinux rocky8fixed
suse slesaffected
rockylinux rocky9fixed
debian debianbookwormfixed2.2.6.4-1
debian debianbullseyefixed2.1.4-3+deb11u1
debian debianforkyfixed2.2.6.4-1
debian debiansidfixed2.2.6.4-1
debian debiantrixiefixed2.2.6.4-1

Package impact
EcosystemPackageVulnerableFixed
ruby RubyGemsrack<~> 2.0.9, >= 2.0.9.3~> 2.0.9, >= 2.0.9.3
ruby RubyGemsrack<2.0.9.32.0.9.3
ruby RubyGemsrack>=2.1.0,<2.1.4.32.1.4.3
ruby RubyGemsrack>=2.2.0,<2.2.6.32.2.6.3
ruby RubyGemsrack>=3.0.0,<3.0.4.23.0.4.2

References

Verify integrity in audit chain (admin only). AS-IS.