The espeak-ruby gem prior to 1.0.3 for Ruby allows remote malicious users to execute arbitrary commands via shell metacharacters in a string to the speak, save, bytes or bytes_wav method in lib/espeak/speech.rb.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
espeak-ruby project espeak-ruby |