Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-re6g-zcke-9yg1
Summary
Command injection vulnerability
The file /lib/cmd_parse.rb contains a flaw that is triggered when handling shell metacharacters passed via the 'ip' variable. This may allow a remote attacker to inject arbitrary commands.
Aliases
0
alias OSVDB-108594
Fixed_packages
Affected_packages
0
url pkg:gem/gnms@2.1.1
purl pkg:gem/gnms@2.1.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-re6g-zcke-9yg1
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/gnms@2.1.1
References
0
reference_url http://www.vapid.dhs.org/advisories/gnms-2.1.1.html
reference_id
reference_type
scores
url http://www.vapid.dhs.org/advisories/gnms-2.1.1.html
Weaknesses
Exploits
Severity_range_scorenull
Exploitability0.5
Weighted_severity0.0
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-re6g-zcke-9yg1