Filter
-Infinity
0
Trending
RubyType confusion exists in two methods of Ruby's WIN32OLE class, ole_invoke and ole_query_interface. A…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
RubyThe openssl extension in Ruby 2.x does not properly maintain the state of process memory after a fil…
5.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
rubygems/jsonRuby JSON Parser has Out-of-bounds Read
7.5
EPSS
0.10%
First published (updated )
Ruby on RailsA specially crafted HTTP If-None-Match header can cause the regular expression engine to enter a sta…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
rubygems/actionpackRails possible ReDoS vulnerability in Accept header parsing in Action Dispatch
7.5
EPSS
0.04%
First published (updated )
RubyDate.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
RubyCGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes in cookie names. This also affe…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.