rubygem22-bigdecimal vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the rubygem22-bigdecimal package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M Directory Traversal	<0:1.2.6-1.11.amzn1
M Improper Input Validation	<0:1.2.6-1.11.amzn1
M Use of Externally-Controlled Format String	<0:1.2.6-1.11.amzn1
M Resource Exhaustion	<0:1.2.6-1.11.amzn1
M Directory Traversal	<0:1.2.6-1.11.amzn1
M Cross-site Scripting (XSS)	<0:1.2.6-1.11.amzn1
M Directory Traversal	<0:1.2.6-1.11.amzn1
M Improper Input Validation	<0:1.2.6-1.11.amzn1
M Improper Verification of Cryptographic Signature	<0:1.2.6-1.11.amzn1
M Loop with Unreachable Exit Condition ('Infinite Loop')	<0:1.2.6-1.11.amzn1
M Link Following	<0:1.2.6-1.11.amzn1
M Deserialization of Untrusted Data	<0:1.2.6-1.11.amzn1
M Arbitrary Code Injection	<0:1.2.6-1.11.amzn1
M HTTP Response Splitting	<0:1.2.6-1.11.amzn1
M Deserialization of Untrusted Data	<0:1.2.6-1.10.amzn1
M Improper Authentication	<0:1.2.6-1.9.amzn1
M Out-of-Bounds	<0:1.2.6-1.9.amzn1
M Deserialization of Untrusted Data	<0:1.2.6-1.9.amzn1
M Improper Input Validation	<0:1.2.6-1.9.amzn1
M Origin Validation Error	<0:1.2.6-1.9.amzn1
M Use of Externally-Controlled Format String	<0:1.2.6-1.9.amzn1
M CRLF Injection	<0:1.2.6-1.9.amzn1
M Out-of-Bounds	<0:1.2.6-1.9.amzn1
M Arbitrary Code Injection	<0:1.2.6-1.9.amzn1
M Improper Input Validation	<0:1.2.6-1.9.amzn1
L Improper Input Validation	<0:1.2.6-1.8.amzn1
M Security Features	<0:1.2.6-1.6.amzn1
M Improper Input Validation	<0:1.2.6-1.6.amzn1
M Improper Input Validation	<0:1.2.6-1.5.amzn1