CVE-2025-27220

Опубликовано: 19 мар. 2025

Источник: msrc

CVSS3: 4

EPSS Низкий

Описание

In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method.

EPSS

Процентиль: 66%

0.00517

Низкий

4 Medium

CVSS3

CVE-2025-27220

CVSS3: 4

ubuntu

9 месяцев назад

In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method.

CVE-2025-27220

CVSS3: 5.3

redhat

9 месяцев назад

In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method.

CVE-2025-27220

CVSS3: 4

nvd

9 месяцев назад

In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method.

CVE-2025-27220

CVSS3: 4

debian

9 месяцев назад

In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of S ...

GHSA-mhwm-jh88-3gjf

CVSS3: 4

github

9 месяцев назад

CGI has Regular Expression Denial of Service (ReDoS) potential in Util#escapeElement

EPSS

Процентиль: 66%

0.00517

Низкий

4 Medium

CVSS3