📦

rake

Vendor: ruby-lang

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 1 Remote Access

Total CVEs 1 Total Indexed

Avg. EPSS 0.55% Exploit Prob.

Latest CVE CVE-2020-8130 Feb 24

Security Vulnerability Index

Page 1 / 1

6.4 CVSS

CVE-2020-8130

RCE

There is an OS command injection vulnerability in Ruby Rake < 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character `|`.

EPSS: 0.55%

Severity: MEDIUM

Feb 24, 2020

Displaying 1 of 1 Total Entries

Total 1 Sections