CVE-2021-41817

Опубликовано: 12 янв. 2022

Источник: msrc

CVSS3: 7.5

EPSS Низкий

Описание

Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service) via a long string. The fixed versions are 3.2.1 3.1.2 3.0.2 and 2.0.1.

EPSS

Процентиль: 65%

0.00495

Низкий

7.5 High

CVSS3

Связанные уязвимости

CVE-2021-41817

CVSS3: 7.5

ubuntu

почти 4 года назад

Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service) via a long string. The fixed versions are 3.2.1, 3.1.2, 3.0.2, and 2.0.1.

CVE-2021-41817

CVSS3: 7.5

redhat

около 4 лет назад

Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service) via a long string. The fixed versions are 3.2.1, 3.1.2, 3.0.2, and 2.0.1.

CVE-2021-41817

CVSS3: 7.5

nvd

почти 4 года назад

Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service) via a long string. The fixed versions are 3.2.1, 3.1.2, 3.0.2, and 2.0.1.

CVE-2021-41817

CVSS3: 7.5

debian

почти 4 года назад

Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regula ...

GHSA-qg54-694p-wgpp

CVSS3: 7.5

github

около 4 лет назад

Regular expression denial of service vulnerability (ReDoS) in date

EPSS

Процентиль: 65%

0.00495

Низкий

7.5 High

CVSS3