Security Advisory

CVE-2019-10780

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-01-22 13:30:47

Last updated 2024-08-04 22:32:01

Assigner snyk

State PUBLISHED

Description

BibTeX-ruby before 5.1.0 allows shell command injection due to unsanitized user input being passed directly to the built-in Ruby Kernel.open method through BibTeX.open.

← Browse all CVEs View on cve.org ↗