CVE-2013-2513: flash_tool Gem for Ruby File Download Handling Arbitrary Command Execution

Severity: Critical

CVSS Score: 9.8

The flash_tool gem through 0.6.0 for Ruby allows command execution via shell metacharacters in the name of a downloaded file.