ReDoS vulnerability in URI gem version before 0.12.2 mishandles specific characters in URLs, leading to increased execution time for parsing. Incomplete fix for CVE-2023-28755. Ruby advisory recommends updating to 0.12.2 or 0.10.3 for compatibility.
Reporter | Title | Published | Views | Family All 199 |
---|---|---|---|---|
OSV | ruby2.3, ruby2.5, ruby2.7, ruby3.0, ruby3.1 vulnerabilities | 12 Jul 202314:47 | – | osv |
OSV | CVE-2023-36617 | 29 Jun 202313:15 | – | osv |
OSV | Red Hat Security Advisory: ruby:3.1 security, bug fix, and enhancement update | 10 Oct 202417:02 | – | osv |
OSV | Moderate: ruby:3.1 security, bug fix, and enhancement update | 5 Apr 202414:57 | – | osv |
OSV | Red Hat Security Advisory: ruby:3.1 security, bug fix, and enhancement update | 10 Oct 202417:02 | – | osv |
OSV | Moderate: ruby:3.1 security, bug fix, and enhancement update | 19 Mar 202400:00 | – | osv |
OSV | Moderate: ruby:3.1 security, bug fix, and enhancement update | 27 Mar 202404:34 | – | osv |
OSV | Moderate: ruby:3.1 security, bug fix, and enhancement update | 1 Apr 202400:00 | – | osv |
OSV | CGA-6xf5-8645-9vr8 | 13 Aug 202409:04 | – | osv |
OSV | CGA-2ggw-f3mg-p6mj | 6 Jun 202412:18 | – | osv |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo