exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 16

GHSA-gwfg-cqmg-cf8f

больше 3 лет назад

WEBRick vulnerable to HTTP Request/Response Smuggling

CVSS3: 7.5

EPSS: Низкий

CVE-2020-25613

почти 5 лет назад

An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, and 2.7.x through 2.7.1. WEBrick, a simple HTTP server bundled with Ruby, had not checked the transfer-encoding header value rigorously. An attacker may potentially exploit this issue to bypass a reverse proxy (which also has a poor header check), which may lead to an HTTP Request Smuggling attack.

CVSS3: 7.5

EPSS: Низкий

CVE-2020-25613

почти 5 лет назад

CVSS3: 7.5

EPSS: Низкий

CVE-2020-25613

почти 5 лет назад

CVSS3: 7.5

EPSS: Низкий

CVE-2020-25613

почти 5 лет назад

CVSS3: 7.5

EPSS: Низкий

CVE-2020-25613

почти 5 лет назад

An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, an ...

CVSS3: 7.5

EPSS: Низкий

openSUSE-SU-2021:0471-1

больше 4 лет назад

Security update for ruby2.5

EPSS: Низкий

SUSE-SU-2021:0933-1

больше 4 лет назад

Security update for ruby2.5

EPSS: Низкий

BDU:2021-01472

почти 5 лет назад

Уязвимость библиотеки WEBrick языка программирования Ruby, связанная с некорректной проверкой значения заголовка, позволяющая нарушителю оказать воздействие на целостность данных

CVSS3: 7.5

EPSS: Низкий

RLSA-2021:2584

около 4 лет назад

Moderate: ruby:2.7 security, bug fix, and enhancement update

EPSS: Низкий

ELSA-2021-2584

около 4 лет назад

ELSA-2021-2584: ruby:2.7 security, bug fix, and enhancement update (MODERATE)

EPSS: Низкий

SUSE-SU-2021:3837-1

почти 4 года назад

Security update for ruby2.1

EPSS: Низкий

RLSA-2021:2587

около 4 лет назад

Moderate: ruby:2.5 security, bug fix, and enhancement update

EPSS: Низкий

ELSA-2021-2587

около 4 лет назад

ELSA-2021-2587: ruby:2.5 security, bug fix, and enhancement update (MODERATE)

EPSS: Низкий

RLSA-2021:2588

около 4 лет назад

Moderate: ruby:2.6 security, bug fix, and enhancement update

EPSS: Низкий

ELSA-2021-2588

около 4 лет назад

ELSA-2021-2588: ruby:2.6 security, bug fix, and enhancement update (MODERATE)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
GHSA-gwfg-cqmg-cf8f WEBRick vulnerable to HTTP Request/Response Smuggling	CVSS3: 7.5	0% Низкий	больше 3 лет назад
CVE-2020-25613 An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, and 2.7.x through 2.7.1. WEBrick, a simple HTTP server bundled with Ruby, had not checked the transfer-encoding header value rigorously. An attacker may potentially exploit this issue to bypass a reverse proxy (which also has a poor header check), which may lead to an HTTP Request Smuggling attack.	CVSS3: 7.5	0% Низкий	почти 5 лет назад
CVE-2020-25613 An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, and 2.7.x through 2.7.1. WEBrick, a simple HTTP server bundled with Ruby, had not checked the transfer-encoding header value rigorously. An attacker may potentially exploit this issue to bypass a reverse proxy (which also has a poor header check), which may lead to an HTTP Request Smuggling attack.	CVSS3: 7.5	0% Низкий	почти 5 лет назад
CVE-2020-25613 An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, and 2.7.x through 2.7.1. WEBrick, a simple HTTP server bundled with Ruby, had not checked the transfer-encoding header value rigorously. An attacker may potentially exploit this issue to bypass a reverse proxy (which also has a poor header check), which may lead to an HTTP Request Smuggling attack.	CVSS3: 7.5	0% Низкий	почти 5 лет назад
CVE-2020-25613	CVSS3: 7.5	0% Низкий	почти 5 лет назад
CVE-2020-25613 An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, an ...	CVSS3: 7.5	0% Низкий	почти 5 лет назад
openSUSE-SU-2021:0471-1 Security update for ruby2.5		0% Низкий	больше 4 лет назад
SUSE-SU-2021:0933-1 Security update for ruby2.5		0% Низкий	больше 4 лет назад
BDU:2021-01472 Уязвимость библиотеки WEBrick языка программирования Ruby, связанная с некорректной проверкой значения заголовка, позволяющая нарушителю оказать воздействие на целостность данных	CVSS3: 7.5	0% Низкий	почти 5 лет назад
RLSA-2021:2584 Moderate: ruby:2.7 security, bug fix, and enhancement update			около 4 лет назад
ELSA-2021-2584 ELSA-2021-2584: ruby:2.7 security, bug fix, and enhancement update (MODERATE)			около 4 лет назад
SUSE-SU-2021:3837-1 Security update for ruby2.1			почти 4 года назад
RLSA-2021:2587 Moderate: ruby:2.5 security, bug fix, and enhancement update			около 4 лет назад
ELSA-2021-2587 ELSA-2021-2587: ruby:2.5 security, bug fix, and enhancement update (MODERATE)			около 4 лет назад
RLSA-2021:2588 Moderate: ruby:2.6 security, bug fix, and enhancement update			около 4 лет назад
ELSA-2021-2588 ELSA-2021-2588: ruby:2.6 security, bug fix, and enhancement update (MODERATE)			около 4 лет назад

Уязвимостей на страницу