Sha256: c8f9e3a65ae44b01b7dd8ae104dbe337a00fc10399477f5fc5353d42fbac6f70
Contents?: true
Size: 540 Bytes
Versions: 1
Compression:
Stored size: 540 Bytes
Contents
--- gem: rgpg cve: 2013-4203 osvdb: 95948 url: https://nvd.nist.gov/vuln/detail/CVE-2013-4203 title: rgpg Gem for Ruby lib/rgpg/gpg_helper.rb Remote Command Execution date: 2013-08-02 description: | rgpg Gem for Ruby contains a flaw in the GpgHelper module (lib/rgpg/gpg_helper.rb). The issue is due to the program failing to properly sanitize user-supplied input before being used in the system() function for execution. This may allow a remote attacker to execute arbitrary commands. cvss_v2: 7.5 patched_versions: - ">= 0.2.3"
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/rgpg/CVE-2013-4203.yml |