Lucene search
K

82 matches found

OpenVAS
OpenVAS
added 2022/09/09 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2022:3212-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS6.8AI score0.01359EPSS
Exploits1References2
OSV
OSV
added 2022/09/08 1:32 p.m.5 views

SUSE-SU-2022:3212-1 Security update for rubygem-rake

This update for rubygem-rake fixes the following issues: - CVE-2020-8130: Fixed a command injection when supplying a filename that began with the pipe character bsc1164804...

6.9CVSS7.4AI score0.01359EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2022/07/31 12:0 a.m.7 views

Fedora: Security Advisory for golang-github-magefile-mage (FEDORA-2022-ea8f4e232d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References2
Fedora
Fedora
added 2022/07/17 1:15 a.m.19 views

[SECURITY] Fedora 35 Update: golang-github-magefile-mage-1.11.0-5.fc35

A Make/rake-like dev tool using Go...

9.3CVSS8.2AI score0.05994EPSS
Exploits4
OpenVAS
OpenVAS
added 2022/07/06 12:0 a.m.13 views

Fedora: Security Advisory for golang-github-magefile-mage (FEDORA-2022-fae3ecee19)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.3CVSS8.9AI score0.05994EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2022/01/28 12:0 a.m.18 views

EulerOS 2.0 SP9 : ruby (EulerOS-SA-2022-1016)

According to the versions of the ruby packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There is an OS command injection vulnerability in Ruby Rake 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character...

6.9CVSS6.9AI score0.01359EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/01/28 12:0 a.m.22 views

EulerOS 2.0 SP9 : ruby (EulerOS-SA-2022-1036)

According to the versions of the ruby packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - There is an OS command injection vulnerability in Ruby Rake 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character...

6.9CVSS6.9AI score0.01359EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.12 views

Mageia: Security Advisory (MGASA-2020-0121)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS6.7AI score0.01359EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2021/11/16 3:43 p.m.5 views

rake: OS Command Injection via egrep in Rake::FileList

There is an OS command injection vulnerability in Ruby Rake 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character |...

6.9CVSS7.2AI score0.01359EPSS
Exploits1References5
Fedora
Fedora
added 2021/04/24 8:20 p.m.82 views

[SECURITY] Fedora 34 Update: rubygem-railties-6.1.2.1-2.fc34

Rails internals: application bootup, plugins, generators, and rake tasks. Railties is responsible to glue all frameworks together. Overall, it: handles all the bootstrapping process for a Rails application; manages rails command line interface; provides Rails generators core;...

7.5CVSS2.6AI score0.05061EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2020/12/22 12:0 a.m.3 views

The vulnerability of the Rake::FileList class implementation in the Rake tool for automating the compilation of software code allows a attacker to execute arbitrary commands.

The vulnerability of the Rake::FileList class implementation in the Rake tool for automating the compilation of software code is related to the lack of measures taken to eliminate special elements used in operating system commands. Exploiting this vulnerability allows an attacker to execute...

6.9CVSS7.1AI score0.01359EPSS
Exploits1References14Affected Software6
Tenable Nessus
Tenable Nessus
added 2020/11/06 12:0 a.m.24 views

EulerOS Virtualization 3.0.6.6 : ruby (EulerOS-SA-2020-2460)

According to the version of the ruby packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - There is an OS command injection vulnerability in Ruby Rake 12.3.3 in Rake::FileList when supplying a filename that begins with the pi...

6.9CVSS6.9AI score0.01359EPSS
Exploits1References2
Fedora
Fedora
added 2020/10/05 12:18 a.m.37 views

[SECURITY] Fedora 33 Update: rubygem-railties-6.0.3.3-1.fc33

Rails internals: application bootup, plugins, generators, and rake tasks. Railties is responsible to glue all frameworks together. Overall, it: handles all the bootstrapping process for a Rails application; manages rails command line interface; provides Rails generators core;...

6.5CVSS2.6AI score0.02372EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/09/08 12:0 a.m.51 views

EulerOS Virtualization for ARM 64 3.0.2.0 : ruby (EulerOS-SA-2020-1955)

According to the versions of the ruby packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an...

7.5CVSS7.4AI score0.06811EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2020/09/02 12:0 a.m.21 views

EulerOS 2.0 SP5 : ruby (EulerOS-SA-2020-1944)

According to the version of the ruby packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - There is an OS command injection vulnerability in Ruby Rake 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character...

6.9CVSS6.9AI score0.01359EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/07/02 12:0 a.m.28 views

Amazon Linux AMI : rubygem24-rake (ALAS-2020-1385)

The version of rubygem24-rake installed on the remote host is prior to 12.0.0-1.49. It is, therefore, affected by a vulnerability as referenced in the ALAS-2020-1385 advisory. There is an OS command injection vulnerability in Ruby Rake 12.3.3 in Rake::FileList when supplying a filename that begin...

6.9CVSS6.9AI score0.01359EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2020/07/02 12:0 a.m.26 views

Amazon Linux AMI : rubygem-rake (ALAS-2020-1384)

It is, therefore, affected by a vulnerability as referenced in the ALAS-2020-1384 advisory. There is an OS command injection vulnerability in Ruby Rake 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character |. CVE-2020-8130 Tenable has extracted the preceding...

6.9CVSS6.8AI score0.01359EPSS
Exploits1References3
Amazon
Amazon
added 2020/06/26 12:0 a.m.31 views

Medium: rubygem-rake

Issue Overview: There is an OS command injection vulnerability in Ruby Rake 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character |. CVE-2020-8130 Affected Packages: rubygem-rake Issue Correction: Run yum update rubygem-rake or yum update --advisory ALAS-2020-1384...

6.9CVSS7.2AI score0.01359EPSS
Exploits1
Amazon
Amazon
added 2020/06/26 12:0 a.m.31 views

Medium: rubygem24-rake

Issue Overview: There is an OS command injection vulnerability in Ruby Rake 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character |. CVE-2020-8130 Affected Packages: rubygem24-rake Issue Correction: Run yum update rubygem24-rake or yum update --advisory...

6.9CVSS7.2AI score0.01359EPSS
Exploits1
OpenVAS
OpenVAS
added 2020/04/30 12:0 a.m.56 views

Fedora: Security Advisory for rubygem-rake (FEDORA-2020-dc1ae17bb5)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.9CVSS6.8AI score0.01359EPSS
Exploits1References2
Rows per page
Query Builder