CVE-2021-31799
published 2021-07-30CVE-2021-31799: In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and tags in a filename.
PriorityP434high7CVSS 3.1
AVLACHPRLUINSUCHIHAH
EPSS
1.48%
70.7th percentile
In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and tags in a filename.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | ruby2.7 | < ruby2.7 2.7.4-1 (bullseye) | ruby2.7 2.7.4-1 (bullseye) |
| oracle | jd_edwards_enterpriseone_tools | < 9.2.6.1 | 9.2.6.1 |
| ruby-lang | rdoc | >= 3.11 < 6.3.1 | 6.3.1 |
| ruby-lang | rdoc | >= 3.11 < 6.1.2.1 | 6.1.2.1 |
| ruby-lang | rdoc | >= 6.2.0 < 6.2.1.1 | 6.2.1.1 |
| ruby-lang | rdoc | >= 6.3.0 < 6.3.1 | 6.3.1 |
CVSS provenance
nvdv3.17.0HIGHCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.04.4MEDIUMAV:L/AC:M/Au:N/C:P/I:P/A:P
osv7.0HIGH
vendor_debian7.0HIGH
vendor_redhat7.0HIGH
vendor_ubuntu7.0HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Arbitrary Code Execution in Rdoc
ghsa·2021-09-01
CVE-2021-31799 [HIGH] CWE-74 Arbitrary Code Execution in Rdoc
Arbitrary Code Execution in Rdoc
In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and tags in a filename.
OSV
Arbitrary Code Execution in Rdoc
osv·2021-09-01
CVE-2021-31799 [HIGH] Arbitrary Code Execution in Rdoc
Arbitrary Code Execution in Rdoc
In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and tags in a filename.
OSV
CVE-2021-31799: In RDoc 3
osv·2021-07-30·CVSS 7.0
CVE-2021-31799 [HIGH] CVE-2021-31799: In RDoc 3
In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and tags in a filename.
OSV
ruby2.3, ruby2.5, ruby2.7 vulnerabilities
osv·2021-07-21·CVSS 7.0
CVE-2021-31799 [HIGH] ruby2.3, ruby2.5, ruby2.7 vulnerabilities
ruby2.3, ruby2.5, ruby2.7 vulnerabilities
It was discovered that Ruby incorrectly handled certain inputs.
An attacker could possibly use this issue to execute arbitrary code.
(CVE-2021-31799)
It was discovered that Ruby incorrectly handled certain inputs.
An attacker could possibly use this issue to conduct
port scans and service banner extractions. This issue only affected
Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 20.10, and Ubuntu 21.04. (CVE-2021-31810)
It was discovered that Ruby incorrectly handled certain inputs.
An attacker could possibly use this issue to perform
machine-in-the-middle attackers to bypass the TLS protection.
(CVE-2021-32066)
Ubuntu
Ruby vulnerabilities
vendor_ubuntu·2021-07-21·CVSS 7.0
CVE-2021-31799 [HIGH] Ruby vulnerabilities
Title: Ruby vulnerabilities
Summary: Several security issues were fixed in Ruby.
It was discovered that Ruby incorrectly handled certain inputs.
An attacker could possibly use this issue to execute arbitrary code.
(CVE-2021-31799)
It was discovered that Ruby incorrectly handled certain inputs.
An attacker could possibly use this issue to conduct
port scans and service banner extractions. This issue only affected
Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 20.10, and Ubuntu 21.04. (CVE-2021-31810)
It was discovered that Ruby incorrectly handled certain inputs.
An attacker could possibly use this issue to perform
machine-in-the-middle attackers to bypass the TLS protection.
(CVE-2021-32066)
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
rubygem-rdoc: Command injection vulnerability in RDoc
vendor_redhat·2021-05-02·CVSS 7.0
CVE-2021-31799 [HIGH] CWE-77 rubygem-rdoc: Command injection vulnerability in RDoc
rubygem-rdoc: Command injection vulnerability in RDoc
In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and tags in a filename.
An operating system command injection flaw was found in RDoc. Using the rdoc command to generate documentation for a malicious Ruby source code could lead to execution of arbitrary commands with the privileges of the user running rdoc.
Package: system (Red Hat 3scale API Management Platform 2) - Fix deferred
Package: ruby (Red Hat Enterprise Linux 6) - Not affected
Package: ruby (Red Hat Enterprise Linux 7) - Out of support scope
Package: ruby (Red Hat Enterprise Linux 9) - Not affected
Debian
CVE-2021-31799: ruby2.7 - In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, i...
vendor_debian·2021·CVSS 7.0
CVE-2021-31799 [HIGH] CVE-2021-31799: ruby2.7 - In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, i...
In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and tags in a filename.
Scope: local
bullseye: resolved (fixed in 2.7.4-1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://lists.debian.org/debian-lts-announce/2021/10/msg00009.htmlhttps://security-tracker.debian.org/tracker/CVE-2021-31799https://security.gentoo.org/glsa/202401-05https://security.netapp.com/advisory/ntap-20210902-0004/https://www.oracle.com/security-alerts/cpuapr2022.htmlhttps://www.ruby-lang.org/en/news/2021/05/02/os-command-injection-in-rdoc/https://lists.debian.org/debian-lts-announce/2021/10/msg00009.htmlhttps://security-tracker.debian.org/tracker/CVE-2021-31799https://security.gentoo.org/glsa/202401-05https://security.netapp.com/advisory/ntap-20210902-0004/https://www.oracle.com/security-alerts/cpuapr2022.htmlhttps://www.ruby-lang.org/en/news/2021/05/02/os-command-injection-in-rdoc/
2021-07-30
Published