Skip to main content

Rake

1 CVEs product

Monthly

CVE-2020-8130 Ruby MEDIUM POC PATCH This Month

There is an OS command injection vulnerability in Ruby Rake < 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character `|`. Rated medium severity (CVSS 6.4). Public exploit code available and no vendor patch available.

Command Injection Rake Ubuntu Linux Debian Linux Fedora +1
NVD
CVSS 3.1
6.4
EPSS
1.4%
EPSS 1% CVSS 6.4
MEDIUM POC PATCH This Month

There is an OS command injection vulnerability in Ruby Rake < 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character `|`. Rated medium severity (CVSS 6.4). Public exploit code available and no vendor patch available.

Command Injection Rake Ubuntu Linux +3
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy