Rake
1 CVEs
product
Monthly
There is an OS command injection vulnerability in Ruby Rake < 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character `|`. Rated medium severity (CVSS 6.4). Public exploit code available and no vendor patch available.
Command Injection
Rake
Ubuntu Linux
Debian Linux
Fedora
+1
NVD
CVSS 3.1
6.4
EPSS
1.4%
CVE-2020-8130
Ruby
EPSS 1%
CVSS 6.4
MEDIUM
POC
PATCH
This Month
There is an OS command injection vulnerability in Ruby Rake < 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character `|`. Rated medium severity (CVSS 6.4). Public exploit code available and no vendor patch available.
Command Injection
Rake
Ubuntu Linux
+3
NVD