cve_2014_2322.rb in codesake-dawn-1.2.0

- old
+ new

@@ -9,10 +9,10 @@
 				def initialize
           message = "Arabic Prawn Gem for Ruby contains a flaw in the ib/string_utf_support.rb file. The issue is due to the program failing to sanitize user input. This may allow a remote attacker to inject arbitrary commands."
 
            super({
             :name=>"CVE-2014-2322",
-            :cvss=>"",
+            :cvss=>"AV:N/AC:L/Au:N/C:P/I:P/A:P",
             :release_date => Date.new(2014, 3, 10),
             :cwe=>"",
             :owasp=>"A9",
             :applies=>["sinatra", "padrino", "rails"],
             :kind=>Codesake::Dawn::KnowledgeBase::DEPENDENCY_CHECK,