Количество 10
Количество 10
BDU:2020-00753
Уязвимость команды gem owner системы управления пакетами RubyGems, связанная с выводом содержимого ответа API в стандартный поток вывода, позволяющая нарушителю нарушить целостность данных
CVE-2019-8322
An issue was discovered in RubyGems 2.6 and later through 3.0.2. The gem owner command outputs the contents of the API response directly to stdout. Therefore, if the response is crafted, escape sequence injection may occur.
CVE-2019-8322
An issue was discovered in RubyGems 2.6 and later through 3.0.2. The gem owner command outputs the contents of the API response directly to stdout. Therefore, if the response is crafted, escape sequence injection may occur.
CVE-2019-8322
An issue was discovered in RubyGems 2.6 and later through 3.0.2. The gem owner command outputs the contents of the API response directly to stdout. Therefore, if the response is crafted, escape sequence injection may occur.
CVE-2019-8322
An issue was discovered in RubyGems 2.6 and later through 3.0.2. The g ...
GHSA-mh37-8c3g-3fgc
RubyGems Escape sequence injection vulnerability in gem owner
ELSA-2019-1235
ELSA-2019-1235: ruby security update (IMPORTANT)
openSUSE-SU-2019:1771-1
Security update for ruby-bundled-gems-rpmhelper, ruby2.5
SUSE-SU-2019:1804-1
Security update for ruby-bundled-gems-rpmhelper, ruby2.5
SUSE-SU-2020:1570-1
Security update for ruby2.1
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2020-00753 Уязвимость команды gem owner системы управления пакетами RubyGems, связанная с выводом содержимого ответа API в стандартный поток вывода, позволяющая нарушителю нарушить целостность данных | CVSS3: 7.5 | 0% Низкий | около 6 лет назад |
 | CVE-2019-8322 An issue was discovered in RubyGems 2.6 and later through 3.0.2. The gem owner command outputs the contents of the API response directly to stdout. Therefore, if the response is crafted, escape sequence injection may occur. | CVSS3: 7.5 | 0% Низкий | около 6 лет назад |
 | CVE-2019-8322 An issue was discovered in RubyGems 2.6 and later through 3.0.2. The gem owner command outputs the contents of the API response directly to stdout. Therefore, if the response is crafted, escape sequence injection may occur. | CVSS3: 5.3 | 0% Низкий | больше 6 лет назад |
 | CVE-2019-8322 An issue was discovered in RubyGems 2.6 and later through 3.0.2. The gem owner command outputs the contents of the API response directly to stdout. Therefore, if the response is crafted, escape sequence injection may occur. | CVSS3: 7.5 | 0% Низкий | около 6 лет назад |
| CVE-2019-8322 An issue was discovered in RubyGems 2.6 and later through 3.0.2. The g ... | CVSS3: 7.5 | 0% Низкий | около 6 лет назад |
| GHSA-mh37-8c3g-3fgc RubyGems Escape sequence injection vulnerability in gem owner | CVSS3: 7.5 | 0% Низкий | около 6 лет назад |
| ELSA-2019-1235 ELSA-2019-1235: ruby security update (IMPORTANT) | около 6 лет назад | ||
 | openSUSE-SU-2019:1771-1 Security update for ruby-bundled-gems-rpmhelper, ruby2.5 | около 6 лет назад | ||
| SUSE-SU-2019:1804-1 Security update for ruby-bundled-gems-rpmhelper, ruby2.5 | около 6 лет назад | ||
| SUSE-SU-2020:1570-1 Security update for ruby2.1 | около 5 лет назад |
Уязвимостей на страницу