VulnerableCode Package Details - pkg:gem/coin_base@4.2.1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:gem/coin_base@4.2.1

Essentials
History (1)

purl	pkg:gem/coin_base@4.2.1

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	4.5

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-nfpt-w93k-dqa5 Aliases: CVE-2019-15224 GHSA-333g-rpr4-7hxq	rest-client Gem Contains Malicious Code The rest-client gem 1.6.10 through 1.6.13 for Ruby, as distributed on RubyGems.org, included a code-execution backdoor inserted by a third party. Users of an affected version should consider downgrading to the last non-affected version of 1.6.9, or upgrading to 1.7.x. Additionally, a set of other minor gems have been partially or completely yanked and are included in this advisory. These include cron_parser, coin_base, blockchain_wallet, awesome-bot, doge-coin, capistrano-colors, bitcoin_vanity, lita_coin, coming-soon, and omniauth_amazon.	There are no reported fixed by versions.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T15:18:23.290089+00:00	Ruby Importer	Affected by	VCID-nfpt-w93k-dqa5	https://github.com/rubysec/ruby-advisory-db/blob/master/gems/coin_base/CVE-2019-15224.yml	38.0.0