RubyGems - sequenceserver - Versions - 0.7.4 - Mend

sequenceserver 0.7.4

1 security vulnerability found in version 0.7.4

Command Injection in sequenceserver gem

critical severity CVE-2024-42360

Patched versions: >= 3.1.2

Impact

Several HTTP endpoints did not properly sanitize user input and/or query parameters. This could be exploited to inject and run unwanted shell commands

Patches

Fixed in 3.1.2

Workarounds

No known workarounds

No officially reported memory leakage issues detected.

This gem version does not have any officially reported memory leaked issues.

Gem version without a license.

Unless a license that specifies otherwise is included, nobody can use, copy, distribute, or modify this library without being at risk of take-downs, shake-downs, or litigation.

This gem version is available.

This gem version has not been yanked and is still available for usage.