Количество 16
Количество 16
GHSA-22h5-pq3x-2gf2
URI allows for userinfo Leakage in URI#join, URI#merge, and URI#+
CVE-2025-27221
In the URI gem before 1.0.3 for Ruby, the URI handling methods (URI.join, URI#merge, URI#+) have an inadvertent leakage of authentication credentials because userinfo is retained even after changing the host.
CVE-2025-27221
In the URI gem before 1.0.3 for Ruby, the URI handling methods (URI.join, URI#merge, URI#+) have an inadvertent leakage of authentication credentials because userinfo is retained even after changing the host.
CVE-2025-27221
In the URI gem before 1.0.3 for Ruby, the URI handling methods (URI.join, URI#merge, URI#+) have an inadvertent leakage of authentication credentials because userinfo is retained even after changing the host.
CVE-2025-27221
In the URI gem before 1.0.3 for Ruby, the URI handling methods (URI.join, URI#merge, URI#+) have an inadvertent leakage of authentication credentials because userinfo is retained even after changing the host.
CVE-2025-27221
In the URI gem before 1.0.3 for Ruby, the URI handling methods (URI.jo ...
ROS-20250417-13
Уязвимость ruby
BDU:2025-05129
Уязвимость программного средства URI gem, связанная с раскрытием информации, позволяющая нарушителю получить доступ к конфиденциальной информации
SUSE-SU-2025:02739-2
Security update for ruby2.5
SUSE-SU-2025:02739-1
Security update for ruby2.5
RLSA-2025:8131
Moderate: ruby security update
ELSA-2025-8131
ELSA-2025-8131: ruby security update (MODERATE)
ELSA-2025-4493
ELSA-2025-4493: ruby:3.3 security update (MODERATE)
ELSA-2025-10217
ELSA-2025-10217: ruby:3.3 security update (MODERATE)
ELSA-2025-4488
ELSA-2025-4488: ruby:3.1 security update (MODERATE)
ELSA-2025-4063
ELSA-2025-4063: ruby:3.1 security update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-22h5-pq3x-2gf2 URI allows for userinfo Leakage in URI#join, URI#merge, and URI#+ | CVSS3: 3.2 | 0% Низкий | 9 месяцев назад |
 | CVE-2025-27221 In the URI gem before 1.0.3 for Ruby, the URI handling methods (URI.join, URI#merge, URI#+) have an inadvertent leakage of authentication credentials because userinfo is retained even after changing the host. | CVSS3: 3.2 | 0% Низкий | 9 месяцев назад |
 | CVE-2025-27221 In the URI gem before 1.0.3 for Ruby, the URI handling methods (URI.join, URI#merge, URI#+) have an inadvertent leakage of authentication credentials because userinfo is retained even after changing the host. | CVSS3: 3.2 | 0% Низкий | 9 месяцев назад |
 | CVE-2025-27221 In the URI gem before 1.0.3 for Ruby, the URI handling methods (URI.join, URI#merge, URI#+) have an inadvertent leakage of authentication credentials because userinfo is retained even after changing the host. | CVSS3: 3.2 | 0% Низкий | 9 месяцев назад |
 | CVE-2025-27221 In the URI gem before 1.0.3 for Ruby, the URI handling methods (URI.join, URI#merge, URI#+) have an inadvertent leakage of authentication credentials because userinfo is retained even after changing the host. | CVSS3: 3.2 | 0% Низкий | 8 месяцев назад |
| CVE-2025-27221 In the URI gem before 1.0.3 for Ruby, the URI handling methods (URI.jo ... | CVSS3: 3.2 | 0% Низкий | 9 месяцев назад |
 | ROS-20250417-13 Уязвимость ruby | CVSS3: 5.3 | 0% Низкий | 7 месяцев назад |
 | BDU:2025-05129 Уязвимость программного средства URI gem, связанная с раскрытием информации, позволяющая нарушителю получить доступ к конфиденциальной информации | CVSS3: 5.3 | 0% Низкий | 9 месяцев назад |
 | SUSE-SU-2025:02739-2 Security update for ruby2.5 | 3 месяца назад | ||
| SUSE-SU-2025:02739-1 Security update for ruby2.5 | 3 месяца назад | ||
 | RLSA-2025:8131 Moderate: ruby security update | около 1 месяца назад | ||
| ELSA-2025-8131 ELSA-2025-8131: ruby security update (MODERATE) | 5 месяцев назад | ||
| ELSA-2025-4493 ELSA-2025-4493: ruby:3.3 security update (MODERATE) | 7 месяцев назад | ||
| ELSA-2025-10217 ELSA-2025-10217: ruby:3.3 security update (MODERATE) | 5 месяцев назад | ||
| ELSA-2025-4488 ELSA-2025-4488: ruby:3.1 security update (MODERATE) | 7 месяцев назад | ||
| ELSA-2025-4063 ELSA-2025-4063: ruby:3.1 security update (MODERATE) | 7 месяцев назад |
Уязвимостей на страницу