Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.4
CVSSv2

CVE-2021-31799

Published: 30/07/2021 Updated: 05/01/2024
CVSS v2 Base Score: 4.4 | Impact Score: 6.4 | Exploitability Score: 3.4
CVSS v3 Base Score: 7 | Impact Score: 5.9 | Exploitability Score: 1
VMScore: 393
Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Debian

Vulnerability Summary

In RDoc 3.11 up to and including 6.x prior to 6.3.1, as distributed with Ruby up to and including 3.0.1, it is possible to execute arbitrary code via | and tags in a filename.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

debian debian linux 9.0

debian debian linux 10.0

ruby-lang rdoc

oracle jd edwards enterpriseone tools

Vendor Advisories

Debian CVElist Bug Report Logs: ruby2.7: CVE-2021-31799 CVE-2021-31810 CVE-2021-32066
Debian Bug report logs - #990815 ruby27: CVE-2021-31799 CVE-2021-31810 CVE-2021-32066 Package: src:ruby27; Maintainer for src:ruby27 is Debian Ruby Team <pkg-ruby-extras-maintainers@listsaliothdebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Thu, 8 Jul 2021 09:06:02 UTC Severity: grave Tags: ...
Debian Security Advisories: DSA-5066-1 ruby2.5 -- security update
Several vulnerabilities have been discovered in the interpreter for the Ruby language and the Rubygems included, which may result in XML roundtrip attacks, the execution of arbitrary code, information disclosure, StartTLS stripping in IMAP or denial of service For the oldstable distribution (buster), these problems have been fixed in version 255 ...
Red Hat: Moderate: ruby:2.5 security update
Synopsis Moderate: ruby:25 security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for the ruby:25 module is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update a ...
Red Hat: Important: ruby:2.6 security update
Synopsis Important: ruby:26 security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for the ruby:26 module is now available for Red Hat Enterprise Linux 84 Extended Update SupportRed Hat Product Secu ...
Red Hat: Important: ruby:2.6 security update
Synopsis Important: ruby:26 security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for the ruby:26 module is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update ...
Red Hat: Important: rh-ruby26-ruby security, bug fix, and enhancement update
Synopsis Important: rh-ruby26-ruby security, bug fix, and enhancement update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for rh-ruby26-ruby is now available for Red Hat Software CollectionsRed Hat Product S ...
Red Hat: Important: ruby:2.6 security update
Synopsis Important: ruby:26 security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for the ruby:26 module is now available for Red Hat Enterprise Linux 82 Extended Update SupportRed Hat Product Secu ...
Red Hat: Important: ruby:2.6 security update
Synopsis Important: ruby:26 security update Type/Severity Security Advisory: Important Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for the ruby:26 module is now available for Red Hat Enterprise Linux 81 Update Services for SAP SolutionsRed Hat Pr ...
Amazon Linux 2: ALASRUBY2.6-2023-005
An operating system command injection flaw was found in RDoc Using the rdoc command to generate documentation for a malicious Ruby source code could lead to execution of arbitrary commands with the privileges of the user running rdoc (CVE-2021-31799) ...
Amazon Linux 2: ALASRUBY3.0-2023-006
An operating system command injection flaw was found in RDoc Using the rdoc command to generate documentation for a malicious Ruby source code could lead to execution of arbitrary commands with the privileges of the user running rdoc (CVE-2021-31799) ...
Amazon Linux AMI: ALAS-2021-1506
RDoc before version 631 used to call Kernel#open to open a local file If a Ruby project has a file whose name starts with "|" and ends with "tags", the command following the pipe character is executed A malicious Ruby project could exploit it to run an arbitrary command execution against a user who attempts to run the rdoc command (CVE-2021-31 ...
Amazon Linux AMI: ALAS-2021-1505
RDoc before version 631 used to call Kernel#open to open a local file If a Ruby project has a file whose name starts with "|" and ends with "tags", the command following the pipe character is executed A malicious Ruby project could exploit it to run an arbitrary command execution against a user who attempts to run the rdoc command (CVE-2021-31 ...
Arch Linux Issues:
RDoc before version 631 used to call Kernel#open to open a local file If a Ruby project has a file whose name starts with "|" and ends with "tags", the command following the pipe character is executed A malicious Ruby project could exploit it to run an arbitrary command execution against a user who attempts to run the rdoc command ...

References

CWE-78https://www.ruby-lang.org/en/news/2021/05/02/os-command-injection-in-rdoc/https://security-tracker.debian.org/tracker/CVE-2021-31799https://security.netapp.com/advisory/ntap-20210902-0004/https://lists.debian.org/debian-lts-announce/2021/10/msg00009.htmlhttps://www.oracle.com/security-alerts/cpuapr2022.htmlhttps://security.gentoo.org/glsa/202401-05https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990815https://nvd.nist.govhttps://www.debian.org/security/2022/dsa-5066
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322administrator privilegesCVE-2024-1579hardcodedCVE-2023-20198CVE-2024-33587CVE-2024-33449CVE-2024-4308HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook