Package impact
RubyGems / mini_magick
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2013-2616 | high | — | 7.5 | 13y ago | MiniMagick Gem for Ruby URI Handling Arbitrary Command Injection | |||
| CVE-2019-13574 | unknown | — | — | 7y ago | In lib/mini_magick/image.rb in MiniMagick before 4.9.4, a fetched remote image filename could cause remote command execution because Image.open input is directly passed to Kernel#open, which accepts … |