Vulnerabilities > Rubygems > Mail GEM
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-07-18 | CVE-2012-2140 | Improper Input Validation vulnerability in Rubygems Mail GEM 2.3.2/2.3.3 The Mail gem before 2.4.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a (1) sendmail or (2) exim delivery. | 7.5 |
| 2012-07-18 | CVE-2012-2139 | Path Traversal vulnerability in Rubygems Mail GEM 2.3.2/2.3.3/2.4.1 Directory traversal vulnerability in lib/mail/network/delivery_methods/file_delivery.rb in the Mail gem before 2.4.4 for Ruby allows remote attackers to read arbitrary files via a .. | 5.0 |