CVE-2013-5671

EUVD-2017-0293
lib/dragonfly/imagemagickutils.rb in the fog-dragonfly gem 0.8.2 for Ruby allows remote attackers to execute arbitrary commands via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 84%
Affected Products (NVD)
VendorProductVersion
mark_evansfog-dragonfly
0.8.2
𝑥
= Vulnerable software versions
References
http://seclists.org/fulldisclosure/2013/Sep/18
http://seclists.org/oss-sec/2013/q3/526
http://seclists.org/oss-sec/2013/q3/528
http://www.osvdb.org/96798
http://www.vapid.dhs.org/advisories/fog-dragonfly-0.8.2-cmd-inj.html
http://seclists.org/fulldisclosure/2013/Sep/18
http://seclists.org/oss-sec/2013/q3/526
http://seclists.org/oss-sec/2013/q3/528
http://www.osvdb.org/96798
http://www.vapid.dhs.org/advisories/fog-dragonfly-0.8.2-cmd-inj.html