CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-4203

The self.run_gpg function in lib/rgpg/gpg_helper.rb in the rgpg gem before 0.2.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.014

EPSS Ranking 79.8%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.openwall.com/lists/oss-security/2013/08/03/2
https://github.com/rcook/rgpg/commit/b819b13d198495f3ecd2762a0dbe27bb6fae3505
http://www.openwall.com/lists/oss-security/2013/08/03/2
https://github.com/rcook/rgpg/commit/b819b13d198495f3ecd2762a0dbe27bb6fae3505

Products affected by CVE-2013-4203

Richard Cook » Rgpg » Version: 0.2.0

cpe:2.3:a:richard_cook:rgpg:0.2.0
Richard Cook » Rgpg » Version: 0.2.1

cpe:2.3:a:richard_cook:rgpg:0.2.1
Richard Cook » Rgpg » Version: 0.2.2

cpe:2.3:a:richard_cook:rgpg:0.2.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-4203

Products

Pricing

Contact Us