Sha256: 1c14ab3589d68a1662d0c79271556cb2ed64d8150f2b5c0996a2ef7759a5b851
Contents?: true
Size: 396 Bytes
Versions: 1
Compression:
Stored size: 396 Bytes
Contents
--- gem: rake cve: 2020-8130 ghsa: jppv-gw3r-w3q8 date: 2019-08-29 url: https://github.com/advisories/GHSA-jppv-gw3r-w3q8 title: OS Command Injection in Rake description: | There is an OS command injection vulnerability in Ruby Rake < 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character `|`. cvss_v2: 9.3 cvss_v3: 8.1 patched_versions: - ">= 12.3.3"
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/rake/CVE-2020-8130.yml |