cve/CVE-2019-8323.md at d265b01db84ea263ae08fa7d2c08cb82387c2083

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-07 11:06:19 +00:00

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

Description

An issue was discovered in RubyGems 2.6 and later through 3.0.2. Gem::GemcutterUtilities#with_response may output the API response to stdout as it is. Therefore, if the API side modifies the response, escape sequence injection may occur.

POC

Reference

No PoCs from references.

Github

https://github.com/vincent-deng/veracode-container-security-finding-parser

722 B Raw Blame History

CVE-2019-8323

Description

POC

Reference

Github

722 B

Raw Blame History