CVE-2025-64185
Open OnDemand (Open OnDemand) is affected in versions prior to 4.0.8 and 3.1.16. The issue stems from world-writable locations created in GEM_PATH within these releases. Open OnDemand 4.0.8 and 3.1.16 have been patched to address this vulnerability. Practical impact, as described in the sources, ...