Vulnerabilidades em rubygems
7 resultadosCVE-2021-43809MEDIUMLocal Code Execution through Argument Injection via dash leading git url parameter in GemfileEPSS 2.8%CVE-2022-29176CRITICALUnauthorized gem takeover for some gems on rubygems.orgEPSS 1.7%CVE-2022-29218HIGHUnauthorized takeover for new versions of some platform-specific gemsEPSS 1.1%CVE-2022-36073HIGHRubyGems allows creation of users with arbitrary unverified emailsEPSS 0.8%CVE-2024-35221MEDIUMDenial of service when publishing a package on rubygems.orgEPSS 0.5%CVE-2024-21654MEDIUMrubygems.org MFA Bypass through password reset function could allow account takeover EPSS 0.5%CVE-2023-40165HIGHUnauthorized gem replacement for full names ending in numbers on rubygems.orgEPSS 0.4%