Launch Week Day 1: Announcing Security Design Review
Start for Free
rubygems

bundler

View on rubygems registry
5 Total advisories
5 Vulnerabilities
0 Malware

Vulnerabilities

MEDIUM 6.7
RubyGems

CVE-2021-43809

Local Code Execution through Argument Injection via dash leading git url parameter in Gemfile.
CRITICAL 9.8
RubyGems

CVE-2016-7954

Bundler allows attacker to inject arbitrary code via secondary Gem source
UNKNOWN
RubyGems

CVE-2013-0334

Bundler may install gems from a different source than expected
HIGH 8.8
RubyGems

CVE-2020-36327

Dependency Confusion in Bundler
HIGH 7.0
RubyGems

CVE-2019-3881

Insecure path handling in Bundler

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes