VulnerableCode Package Details - pkg:gem/rest-client@1.6.14

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:gem/rest-client@1.6.14

Essentials
History (1)

purl	pkg:gem/rest-client@1.6.14

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-nfpt-w93k-dqa5	rest-client Gem Contains Malicious Code The rest-client gem 1.6.10 through 1.6.13 for Ruby, as distributed on RubyGems.org, included a code-execution backdoor inserted by a third party. Users of an affected version should consider downgrading to the last non-affected version of 1.6.9, or upgrading to 1.7.x. Additionally, a set of other minor gems have been partially or completely yanked and are included in this advisory. These include cron_parser, coin_base, blockchain_wallet, awesome-bot, doge-coin, capistrano-colors, bitcoin_vanity, lita_coin, coming-soon, and omniauth_amazon.	CVE-2019-15224 GHSA-333g-rpr4-7hxq

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-02T12:36:00.100423+00:00	GitLab Importer	Fixing	VCID-nfpt-w93k-dqa5	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/rest-client/CVE-2019-15224.yml	38.0.0