Vulnerabilities > Rubygems

DATE CVE VULNERABILITY TITLE RISK
2024-01-12 CVE-2024-21654 Improper Authentication vulnerability in Rubygems Rubygems.Org 20230814
Rubygems.org is the Ruby community's gem hosting service.
network
low complexity
rubygems CWE-287
critical
9.8
2023-08-17 CVE-2023-40165 Unspecified vulnerability in Rubygems Rubygems.Org
rubygems.org is the Ruby community's primary gem (library) hosting service.
network
low complexity
rubygems
7.5
2022-05-13 CVE-2022-29218 Authentication Bypass by Spoofing vulnerability in Rubygems Rubygems.Org
RubyGems is a package registry used to supply software for the Ruby language ecosystem.
network
low complexity
rubygems CWE-290
7.5
2022-05-05 CVE-2022-29176 Missing Authorization vulnerability in Rubygems Rubygems.Org
Rubygems is a package registry used to supply software for the Ruby language ecosystem.
network
high complexity
rubygems CWE-862
7.5
2019-06-17 CVE-2019-8323 Injection vulnerability in multiple products
An issue was discovered in RubyGems 2.6 and later through 3.0.2.
network
low complexity
rubygems debian opensuse CWE-74
5.0
2019-06-17 CVE-2019-8322 Injection vulnerability in multiple products
An issue was discovered in RubyGems 2.6 and later through 3.0.2.
network
low complexity
rubygems debian opensuse CWE-74
5.0
2019-06-17 CVE-2019-8321 Argument Injection or Modification vulnerability in multiple products
An issue was discovered in RubyGems 2.6 and later through 3.0.2.
network
low complexity
rubygems debian opensuse CWE-88
5.0
2019-06-17 CVE-2019-8325 Injection vulnerability in multiple products
An issue was discovered in RubyGems 2.6 and later through 3.0.2.
network
low complexity
rubygems opensuse debian CWE-74
5.0
2019-06-17 CVE-2019-8324 Code Injection vulnerability in multiple products
An issue was discovered in RubyGems 2.6 and later through 3.0.2.
6.8
2019-06-06 CVE-2019-8320 Path Traversal vulnerability in Rubygems
A Directory Traversal issue was discovered in RubyGems 2.7.6 and later through 3.0.2.
network
rubygems CWE-22
8.8