Lucene search

K

URI gem has ReDoS vulnerability

🗓️ 29 Jun 2023 15:34:30Reported by GoogleType 
osv
 osv
🔗 osv.dev👁 15 Views

ReDoS vulnerability in URI gem version before 0.12.2 mishandles specific characters in URLs, leading to increased execution time for parsing. Incomplete fix for CVE-2023-28755. Ruby advisory recommends updating to 0.12.2 or 0.10.3 for compatibility.

Show more
Related
Refs

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
29 Jun 2023 15:30Current
6.9Medium risk
Vulners AI Score6.9
CVSS35.3
EPSS0.005
15
.json
Report