The paranoid2 gem 1.1.6 for Ruby, as distributed on RubyGems.org, included a code-execution backdoor inserted by a third party. The current version, without this backdoor, is 1.1.5.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2019-07-14T15:03:37
Updated: 2024-08-04T23:57:39.426Z
Reserved: 2019-07-14T00:00:00
Link: CVE-2019-13589
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2019-07-14T16:15:10.417
Modified: 2020-08-24T17:37:01.140
Link: CVE-2019-13589
Redhat
No data.