rubygems-update is an inbuilt rubygem for updating rubygems.
Affected versions of this package are vulnerable to Arbitrary Code Injection.
Gem::GemcutterUtilities#with_response may output the API response to stdout as it is. Therefore, if the API side modifies the response, escape sequence injection may occur.
rubygems-update to version 2.7.9, 3.0.2 or higher.