VulnerableCode Package Details - pkg:gem/rdoc@6.2.2

Search for packages

Package details: pkg:gem/rdoc@6.2.2

Essentials
History (3)

purl	pkg:gem/rdoc@6.2.2
Tags	Ghost

Next non-vulnerable version	6.3.4.1
Latest non-vulnerable version	6.6.3.1
Risk	4.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-gmf4-gcd5-aaab Aliases: CVE-2021-31799 GHSA-ggxm-pgc9-g7fp	In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via \| and tags in a filename.	6.3.1 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2024-11-18T23:06:40.524954+00:00	Ruby Importer	Affected by	VCID-gmf4-gcd5-aaab	https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rdoc/CVE-2021-31799.yml	34.3.2
2024-09-18T08:43:55.996504+00:00	Ruby Importer	Affected by	VCID-gmf4-gcd5-aaab	https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rdoc/CVE-2021-31799.yml	34.0.1
2024-04-23T22:45:00.713723+00:00	Ruby Importer	Affected by	VCID-gmf4-gcd5-aaab	https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rdoc/CVE-2021-31799.yml	34.0.0rc4