Lucene search

Basic search
Lucene search
Search by product

Vendors

Products

GoogleOSV:DSA-4586-1

HistoryDec 17, 2019 - 12:00 a.m.

ruby2.5 - security update

2019-12-1700:00:00

Google

osv.dev

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

6.7 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.011 Low

EPSS

Percentile

83.8%

JSON

Bulletin has no description

CPENameOperatorVersion
ruby2.5eq2.5.5-3

CPE	Name	Operator	Version
	ruby2.5	eq	2.5.5-3

nessus 43

debian 8

openvas 14

osv 16

freebsd 1

cloudfoundry 1

symantec 1

gentoo 1

mageia 2

ubuntu 1

archlinux 2

amazon 2

suse 1

almalinux 2

rocky 2

redhat 6

oraclelinux 2

ibm 2

photon 6

cbl_mariner 4

veracode 5

debiancve 5

alpinelinux 4

cve 5

prion 5

redhatcve 4

ubuntucve 5

hackerone 2

github 1

rosalinux 1

oracle 1

nessus

Ubuntu 16.04 LTS / 18.04 LTS : Ruby vulnerabilities (USN-4201-1)

2019-11-27 00:00:00

Debian DSA-4587-1 : ruby2.3 - security update

2019-12-18 00:00:00

FreeBSD : ruby -- multiple vulnerabilities (f7fcb75c-e537-11e9-863e-b9b7af01ba9e)

2019-10-03 00:00:00

debian

[SECURITY] [DSA 4587-1] ruby2.3 security update

2019-12-17 09:56:14

[SECURITY] [DSA 4586-1] ruby2.5 security update

2019-12-17 09:37:05

[SECURITY] [DSA 4586-1] ruby2.5 security update

2019-12-17 09:37:05

openvas

Debian Security Advisory DSA 4587-1 (ruby2.3 - security update)

2019-12-18 00:00:00

Debian Security Advisory DSA 4586-1 (ruby2.5 - security update)

2019-12-18 00:00:00

Ubuntu Update for ruby2.5 USN-4201-1

2019-11-27 00:00:00

osv

ruby2.3 - security update

2019-12-17 00:00:00

ruby2.1 - security update

2019-11-25 00:00:00

jruby - security update

2019-12-10 00:00:00

freebsd

ruby -- multiple vulnerabilities

2019-10-01 00:00:00

cloudfoundry

USN-4201-1: Ruby vulnerabilities | Cloud Foundry

2019-12-05 00:00:00

symantec

Ruby Multiple Security Vulnerabilities

2019-10-01 00:00:00

gentoo

Ruby: Multiple vulnerabilities

2020-03-13 00:00:00

mageia

Updated ruby packages fix security vulnerabilities

2019-12-25 22:08:41

Updated jruby packages fix security vulnerabilities

2020-11-27 23:14:57

ubuntu

Ruby vulnerabilities

2019-11-26 00:00:00

archlinux

[ASA-201910-2] ruby: multiple issues

2019-10-02 00:00:00

[ASA-201910-5] ruby2.5: multiple issues

2019-10-02 00:00:00

amazon

Important: ruby

2024-02-29 10:03:00

Important: ruby24

2020-08-26 23:09:00

suse

2020-03-28 00:00:00

almalinux

Moderate: ruby:2.5 security, bug fix, and enhancement update

2021-06-29 13:58:20

Moderate: ruby:2.6 security, bug fix, and enhancement update

2021-06-29 13:58:40

rocky

ruby:2.5 security, bug fix, and enhancement update

2021-06-29 13:58:20

ruby:2.6 security, bug fix, and enhancement update

2021-06-29 13:58:40

redhat

(RHSA-2021:2587) Moderate: ruby:2.5 security, bug fix, and enhancement update

2021-06-29 13:58:20

(RHSA-2021:2104) Moderate: rh-ruby25-ruby security, bug fix, and enhancement update

2021-05-25 12:17:56

(RHSA-2021:2588) Moderate: ruby:2.6 security, bug fix, and enhancement update

2021-06-29 13:58:40

oraclelinux

ruby:2.5 security, bug fix, and enhancement update

2021-07-02 00:00:00

ruby:2.6 security, bug fix, and enhancement update

2021-07-07 00:00:00

ibm

Security Bulletin: Multiple security vulnerabilities affect IBM Cloud Foundry Migration Runtime

2021-10-13 14:44:47

Security Bulletin: Vyatta 5600 vRouter Software Patches - Release 1801-ze

2020-07-24 21:16:35

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-1.0-0263

2019-12-27 00:00:00

Critical Photon OS Security Update - PHSA-2019-0263

2019-12-27 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-2.0-0196

2019-12-20 00:00:00

cbl_mariner

CVE-2019-16201 affecting package ruby 2.6.3-3

2021-06-09 03:50:37

CVE-2019-16254 affecting package ruby 2.6.3-3

2021-06-09 03:50:37

CVE-2019-15845 affecting package ruby 2.6.3-3

2021-06-09 03:50:37

veracode

HTTP Response Splitting

2019-10-02 06:21:10

Arbitrary Code Execution

2020-09-21 06:33:27

Directory Traversal

2020-10-04 04:48:56

debiancve

CVE-2019-16201

2019-11-26 18:15:00

CVE-2019-15845

2019-11-26 17:15:00

CVE-2019-16255

2019-11-26 18:15:00

alpinelinux

CVE-2019-16255

2019-11-26 18:15:00

CVE-2019-15845

2019-11-26 17:15:00

CVE-2019-16201

2019-11-26 18:15:00

cve

CVE-2019-16255

2019-11-26 18:15:00

CVE-2019-15845

2019-11-26 17:15:00

CVE-2019-16201

2019-11-26 18:15:00

prion

Design/Logic Flaw

2019-11-26 17:15:00

Code injection

2019-11-26 18:15:00

Code injection

2019-11-26 18:15:00

redhatcve

CVE-2019-15845

2020-01-09 14:09:04

CVE-2019-16255

2020-03-30 08:17:23

CVE-2019-16201

2020-03-21 08:11:44

ubuntucve

CVE-2019-15845

2019-11-20 00:00:00

CVE-2019-16255

2019-11-20 00:00:00

CVE-2019-16201

2019-11-20 00:00:00

hackerone

Ruby: HTTP header can split /[\r\n]/ instead of /\r\n/

2018-04-02 14:50:38

Ruby: RubyのCGIライブラリにHTTPレスポンス分割（HTTPヘッダインジェクション）があり、秘密情報が漏洩する

2021-05-21 01:10:02

github

HTTP Response Splitting in Puma

2020-02-28 16:53:55

rosalinux

Advisory ROSA-SA-2021-1966

2021-07-02 18:06:34

oracle

Oracle Critical Patch Update Advisory - January 2020

2020-01-14 00:00:00

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

6.7 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.011 Low

EPSS

Percentile

83.8%

JSON

Related for OSV:DSA-4586-1