cve/CVE-2021-31799.md at f0ac04d7677853df048666db730bdfce74d87780 - cve - 临风笛

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

687 B

Raw Blame History

CVE-2021-31799

Description

In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and tags in a filename.

POC

Reference

https://www.oracle.com/security-alerts/cpuapr2022.html

Github