4 matches found
CVE-2019-13354
The strongpassword gem 0.0.7 for Ruby, as distributed on RubyGems.org, included a code-execution backdoor inserted by a third party. The current version, without this backdoor, is 0.0.6...
CVE-2019-13354
The strongpassword gem 0.0.7 for Ruby, as distributed on RubyGems.org, included a code-execution backdoor inserted by a third party. The current version, without this backdoor, is 0.0.6...
CVE-2019-13354
CVE-2019-13354 concerns the Ruby gem strong_password ; the 0.0.7 release on RubyGems.org was hijacked to include a backdoor enabling remote code execution. The malicious package allowed code execution if exploited, with fixes deployed in 0.0.8 (per multiple sources). Public references consistentl...
CVE-2019-13354
The strongpassword gem 0.0.7 for Ruby, as distributed on RubyGems.org, included a code-execution backdoor inserted by a third party. The current version, without this backdoor, is 0.0.6...