Skip to main content

Cocoapods Downloader

2 CVEs product

Monthly

CVE-2022-24440 Ruby CRITICAL PATCH Act Now

The package cocoapods-downloader before 1.6.0, from 1.6.2 and before 1.6.3 are vulnerable to Command Injection via git argument injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Command Injection Cocoapods Downloader
NVD GitHub
CVSS 3.1
9.8
EPSS
2.7%
CVE-2022-21223 Ruby CRITICAL PATCH Act Now

The package cocoapods-downloader before 1.6.2 are vulnerable to Command Injection via hg argument injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Command Injection Cocoapods Downloader
NVD GitHub
CVSS 3.1
9.8
EPSS
1.8%
EPSS 3% CVSS 9.8
CRITICAL PATCH Act Now

The package cocoapods-downloader before 1.6.0, from 1.6.2 and before 1.6.3 are vulnerable to Command Injection via git argument injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Command Injection Cocoapods Downloader
NVD GitHub
EPSS 2% CVSS 9.8
CRITICAL PATCH Act Now

The package cocoapods-downloader before 1.6.2 are vulnerable to Command Injection via hg argument injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Command Injection Cocoapods Downloader
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy