Lucene search
+L

60 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : ruby:2.5 (AXSA:2022-3087:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3087:01 advisory. rubygem-rdoc: Command injection vulnerability in RDoc CVE-2021-31799 ruby: FTP PASV command response can cause Net::FTP to connect to arbitrary host...

7.4CVSS8.7AI score0.0305EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.12 views

Alibaba Cloud Linux 3 : 0054: ruby:2.7 (ALINUX3-SA-2021:0054)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2021:0054 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2020-36327: Bundler 1.16.0 through 2.2...

9.3CVSS7.6AI score0.06307EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2024/01/05 12:0 a.m.24 views

GLSA-202401-05 : RDoc: Command Injection

The remote host is affected by the vulnerability described in GLSA-202401-05 RDoc: Command Injection - In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and tags in a filename. CVE-2021-31799 Note that Nessus has not test...

7CVSS7.6AI score0.0148EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.36 views

Rocky Linux 8 : ruby:2.5 (RLSA-2022:0672)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:0672 advisory. - In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and tags in a filename...

7.4CVSS7.6AI score0.0305EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2023/09/27 12:0 a.m.44 views

Amazon Linux 2 : ruby (ALASRUBY2.6-2023-005)

The version of ruby installed on the remote host is prior to 2.6.7-126. It is, therefore, affected by a vulnerability as referenced in the ALAS2RUBY2.6-2023-005 advisory. An operating system command injection flaw was found in RDoc. Using the rdoc command to generate documentation for a malicious...

7CVSS7.8AI score0.0148EPSS
Exploits0References4
Amazon
Amazon
added 2023/09/25 12:0 a.m.5 views

Medium: ruby

Issue Overview: An operating system command injection flaw was found in RDoc. Using the rdoc command to generate documentation for a malicious Ruby source code could lead to execution of arbitrary commands with the privileges of the user running rdoc. CVE-2021-31799 Affected Packages: ruby Note:...

7CVSS7.9AI score0.0148EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/03/11 12:0 a.m.56 views

AlmaLinux 8 : ruby:2.5 (ALSA-2022:0672)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:0672 advisory. rubygem-rdoc: Command injection vulnerability in RDoc CVE-2021-31799 ruby: FTP PASV command response can cause Net::FTP to connect to arbitrary host...

7.4CVSS7.3AI score0.0305EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2022/03/09 12:0 a.m.41 views

Oracle Linux 8 : ELSA-2022-0672-1: / ruby:2.5 (ELSA-2022-06721)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-06721 advisory. - Properly fix command injection vulnerability in Rdoc. Related: CVE-2021-31799 - Fix command injection vulnerability in RDoc. Resolves: CVE-2021-3179...

7.4CVSS7.1AI score0.0305EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2022/03/01 12:0 a.m.29 views

Oracle Linux 8 : ruby:2.5 (ELSA-2022-0672)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-0672 advisory. - Properly fix command injection vulnerability in Rdoc. Related: CVE-2021-31799 - Fix command injection vulnerability in RDoc. Resolves: CVE-2021-31799...

7.4CVSS7.1AI score0.0305EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2022/02/28 7:0 p.m.90 views

Important: Red Hat Security Advisory: rh-ruby26-ruby security, bug fix, and enhancement update

An update for rh-ruby26-ruby is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabili...

9.3CVSS6.6AI score0.06307EPSS
Exploits5References8
Oracle linux
Oracle linux
added 2022/02/28 12:0 a.m.53 views

ruby:2.5 security update

ruby 2.5.9-109 - Properly fix command injection vulnerability in Rdoc. Related: CVE-2021-31799 2.5.9-108 - Fix command injection vulnerability in RDoc. Resolves: CVE-2021-31799 - Fix StartTLS stripping vulnerability in Net::IMAP Resolves: CVE-2021-32066 - Fix FTP PASV command response can cause...

7.4CVSS0.9AI score0.0305EPSS
Exploits2
OpenVAS
OpenVAS
added 2022/02/24 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2022-1187)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS7.5AI score0.0148EPSS
Exploits0References2
AlmaLinux
AlmaLinux
added 2022/02/24 12:0 a.m.99 views

Moderate: ruby:2.5 security update

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Security Fixes: rubygem-rdoc: Command injection vulnerability in RDoc CVE-2021-31799 ruby: FTP PASV command response can cause Net::FTP to connect...

7.4CVSS7.7AI score0.0305EPSS
Exploits2References12
Tenable Nessus
Tenable Nessus
added 2022/02/24 12:0 a.m.36 views

RHEL 8 : ruby:2.5 (RHSA-2022:0672)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0672 advisory. Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system...

7.4CVSS7.3AI score0.0305EPSS
Exploits2References9
Tenable Nessus
Tenable Nessus
added 2022/02/23 12:0 a.m.29 views

EulerOS 2.0 SP3 : ruby (EulerOS-SA-2022-1187)

According to the versions of the ruby packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and tags in a...

7CVSS7.6AI score0.0148EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/02/22 12:0 a.m.36 views

RHEL 8 : ruby:2.6 (RHSA-2022:0582)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0582 advisory. Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system...

9.3CVSS6.8AI score0.06811EPSS
Exploits7References31
RedHat Linux
RedHat Linux
added 2022/02/16 11:39 a.m.64 views

Important: Red Hat Security Advisory: ruby:2.6 security update

An update for the ruby:2.6 module is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

9.3CVSS6.6AI score0.06307EPSS
Exploits5References8
RedHat Linux
RedHat Linux
added 2022/02/16 11:35 a.m.87 views

Important: Red Hat Security Advisory: ruby:2.6 security update

An update for the ruby:2.6 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.3CVSS6.6AI score0.06307EPSS
Exploits5References8
AlmaLinux
AlmaLinux
added 2022/02/16 8:26 a.m.120 views

Important: ruby:2.6 security update

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Security Fixes: rubygem-bundler: Dependencies of gems with explicit source may be installed from a different source CVE-2020-36327 rubygem-rdoc:...

9.3CVSS7.9AI score0.06307EPSS
Exploits5References7
Tenable Nessus
Tenable Nessus
added 2022/02/16 12:0 a.m.48 views

RHEL 8 : ruby:2.6 (RHSA-2022:0544)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0544 advisory. Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system...

9.3CVSS7.3AI score0.06307EPSS
Exploits5References15
Rows per page
Query Builder