CVE-2019-14281

CVE-2019-14281

EPSS 3.1%

The datagrid gem 1.0.6 for Ruby, as distributed on RubyGems.org, included a code-execution backdoor inserted by a third party.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/rubygems/rubygems.org/issues/2072 https://rubygems.org/gems/datagrid/versions https://snyk.io/vuln/SNYK-RUBY-DATAGRID-455500