7.5
CVSS V3
Status
Justification
Impact
Some scanners misattribute the Ruby OpenSSL gem version as being the OpenSSL version, generating an alert for this vulnerability. Others may also detect a version string in Ruby's bundled OpenSSL shared object, however this is not used. At the time of writing, the underlying OpenSSL version is 3.5.2 which is not vulnerable to CVE-2023-5363