Lucene search

rubygem-cgi -- buffer overrun in CGI.escape_html

🗓️ 24 Nov 2021 00:00:00Reported by FreeBSDType

Buffer overrun in rubygem-cgi escape_html on Window

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 48
Veracode	Denial Of Service (DoS)	25 Nov 202117:08	–	veracode
Cvelist	CVE-2021-41816	6 Feb 202200:00	–	cvelist
OSV	CVE-2021-41816	6 Feb 202221:15	–	osv
OSV	Buffer overrun in CGI.escape_html	14 Dec 202121:36	–	osv
OSV	CGA-RWV5-454X-4XJP	6 Jun 202412:29	–	osv
OSV	OPENSUSE-SU-2024:11657-1 libruby2_7-2_7-2.7.5-1.1 on GA media	15 Jun 202400:00	–	osv
OSV	ruby2.7 - security update	3 Feb 202200:00	–	osv
OSV	OPENSUSE-SU-2024:11658-1 libruby3_0-3_0-3.0.3-1.1 on GA media	15 Jun 202400:00	–	osv
OSV	ruby2.3, ruby2.5, ruby2.7 vulnerabilities	18 Jan 202217:13	–	osv
OSV	RHSA-2022:6856 Red Hat Security Advisory: rh-ruby27-ruby security, bug fix, and enhancement update	1 Oct 202414:48	–	osv

Source	Link
ruby-lang	www.ruby-lang.org/en/news/2021/11/24/buffer-overrun-in-cgi-escape_html-cve-2021-41816/

OS	OS Version	Architecture	Package	Package Version	Filename
FreeBSD	any	noarch	ruby	2.7.0,1	UNKNOWN
FreeBSD	any	noarch	ruby	2.7.5,1	UNKNOWN
FreeBSD	any	noarch	ruby27	2.7.0,1	UNKNOWN
FreeBSD	any	noarch	ruby27	2.7.5,1	UNKNOWN
FreeBSD	any	noarch	ruby30	3.0.0,1	UNKNOWN
FreeBSD	any	noarch	ruby30	3.0.3,1	UNKNOWN
FreeBSD	any	noarch	rubygem-cgi	0.3.1	UNKNOWN

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Nov 2021 00:00Current

9.5High risk

Vulners AI Score9.5

CVSS27.5

CVSS39.8

EPSS0.00767