Количество 20
Количество 20
ROS-20250417-12
Множественные уязвимости ruby
ELSA-2025-4487
ELSA-2025-4487: ruby security update (MODERATE)
SUSE-SU-2025:1369-1
Security update for ruby2.5
ELSA-2025-4488
ELSA-2025-4488: ruby:3.1 security update (MODERATE)
ELSA-2025-4063
ELSA-2025-4063: ruby:3.1 security update (MODERATE)
CVE-2025-27220
In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method.
CVE-2025-27220
In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method.
CVE-2025-27220
In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method.
CVE-2025-27220
CVE-2025-27220
In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of S ...
CVE-2025-27219
In the CGI gem before 0.4.2 for Ruby, the CGI::Cookie.parse method in the CGI library contains a potential Denial of Service (DoS) vulnerability. The method does not impose any limit on the length of the raw cookie value it processes. This oversight can lead to excessive resource consumption when parsing extremely large cookies.
CVE-2025-27219
In the CGI gem before 0.4.2 for Ruby, the CGI::Cookie.parse method in the CGI library contains a potential Denial of Service (DoS) vulnerability. The method does not impose any limit on the length of the raw cookie value it processes. This oversight can lead to excessive resource consumption when parsing extremely large cookies.
CVE-2025-27219
In the CGI gem before 0.4.2 for Ruby, the CGI::Cookie.parse method in the CGI library contains a potential Denial of Service (DoS) vulnerability. The method does not impose any limit on the length of the raw cookie value it processes. This oversight can lead to excessive resource consumption when parsing extremely large cookies.
CVE-2025-27219
CVE-2025-27219
In the CGI gem before 0.4.2 for Ruby, the CGI::Cookie.parse method in ...
GHSA-mhwm-jh88-3gjf
CGI has Regular Expression Denial of Service (ReDoS) potential in Util#escapeElement
BDU:2025-05132
Уязвимость программного средства cgi gem, связанная с недостаточной проверкой ввода при обработке ненадежного ввода с помощью регулярных выражений, позволяющая нарушителю вызвать отказ в обслуживании
GHSA-gh9q-2xrm-x6qv
CGI has Denial of Service (DoS) potential in Cookie.parse
BDU:2025-05128
Уязвимость программного средства cgi gem, связанная с неправильная проверкой входных данных, позволяющая нарушителю вызвать отказ в обслуживании
ELSA-2025-4493
ELSA-2025-4493: ruby:3.3 security update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | ROS-20250417-12 Множественные уязвимости ruby | CVSS3: 7.5 | 2 месяца назад | |
| ELSA-2025-4487 ELSA-2025-4487: ruby security update (MODERATE) | около 1 месяца назад | ||
 | SUSE-SU-2025:1369-1 Security update for ruby2.5 | около 2 месяцев назад | ||
| ELSA-2025-4488 ELSA-2025-4488: ruby:3.1 security update (MODERATE) | около 2 месяцев назад | ||
| ELSA-2025-4063 ELSA-2025-4063: ruby:3.1 security update (MODERATE) | около 2 месяцев назад | ||
 | CVE-2025-27220 In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method. | CVSS3: 4 | 0% Низкий | 4 месяца назад |
 | CVE-2025-27220 In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method. | CVSS3: 5.3 | 0% Низкий | 4 месяца назад |
 | CVE-2025-27220 In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method. | CVSS3: 4 | 0% Низкий | 4 месяца назад |
 | CVSS3: 7.5 | 0% Низкий | 3 месяца назад | |
| CVE-2025-27220 In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of S ... | CVSS3: 4 | 0% Низкий | 4 месяца назад |
| CVE-2025-27219 In the CGI gem before 0.4.2 for Ruby, the CGI::Cookie.parse method in the CGI library contains a potential Denial of Service (DoS) vulnerability. The method does not impose any limit on the length of the raw cookie value it processes. This oversight can lead to excessive resource consumption when parsing extremely large cookies. | CVSS3: 5.8 | 0% Низкий | 4 месяца назад |
| CVE-2025-27219 In the CGI gem before 0.4.2 for Ruby, the CGI::Cookie.parse method in the CGI library contains a potential Denial of Service (DoS) vulnerability. The method does not impose any limit on the length of the raw cookie value it processes. This oversight can lead to excessive resource consumption when parsing extremely large cookies. | CVSS3: 5.3 | 0% Низкий | 4 месяца назад |
| CVE-2025-27219 In the CGI gem before 0.4.2 for Ruby, the CGI::Cookie.parse method in the CGI library contains a potential Denial of Service (DoS) vulnerability. The method does not impose any limit on the length of the raw cookie value it processes. This oversight can lead to excessive resource consumption when parsing extremely large cookies. | CVSS3: 5.8 | 0% Низкий | 4 месяца назад |
| CVSS3: 7.5 | 0% Низкий | 3 месяца назад | |
| CVE-2025-27219 In the CGI gem before 0.4.2 for Ruby, the CGI::Cookie.parse method in ... | CVSS3: 5.8 | 0% Низкий | 4 месяца назад |
| GHSA-mhwm-jh88-3gjf CGI has Regular Expression Denial of Service (ReDoS) potential in Util#escapeElement | CVSS3: 4 | 0% Низкий | 4 месяца назад |
 | BDU:2025-05132 Уязвимость программного средства cgi gem, связанная с недостаточной проверкой ввода при обработке ненадежного ввода с помощью регулярных выражений, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 0% Низкий | 4 месяца назад |
| GHSA-gh9q-2xrm-x6qv CGI has Denial of Service (DoS) potential in Cookie.parse | CVSS3: 5.8 | 0% Низкий | 4 месяца назад |
| BDU:2025-05128 Уязвимость программного средства cgi gem, связанная с неправильная проверкой входных данных, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 0% Низкий | 4 месяца назад |
| ELSA-2025-4493 ELSA-2025-4493: ruby:3.3 security update (MODERATE) | около 2 месяцев назад |
Уязвимостей на страницу