Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

14141 matches found

Gitee
Giteeadded 2025/06/25 11:17 p.m.87 views

metasploit-framework

This repository is an offensive tool for Metasploit Framework. The primary CVE ID is not explicitly mentioned, but it is likely related to the Metasploit Framework itself. The target product/service or framework is Metasploit Framework, a penetration testing platform. The vulnerability class/vect...

7.9AI score
Exploits0
OSV
OSVadded 2025/06/25 5:15 p.m.2 views

AZL-64367 CVE-2025-6442 affecting package rubygem-webrick for versions less than 1.7.0-2

Ruby WEBrick readheader HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions. The...

6.5CVSS6.8AI score0.00257EPSS
Exploits0References1
OSV
OSVadded 2025/06/25 5:15 p.m.3 views

CVE-2025-6442

Ruby WEBrick readheader HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions. The...

5.9CVSS6.9AI score
Exploits0References2
OSV
OSVadded 2025/06/25 5:15 p.m.0 views

AZL-64364 CVE-2025-6442 affecting package ruby for versions less than 3.1.7-2

Ruby WEBrick readheader HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions. The...

6.5CVSS6.8AI score0.00257EPSS
Exploits0References1
OSV
OSVadded 2025/06/25 5:15 p.m.3 views

AZL-64355 CVE-2025-6442 affecting package rubygem-webrick for versions less than 1.8.1-2

Ruby WEBrick readheader HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions. The...

6.5CVSS6.8AI score0.00257EPSS
Exploits0References1
AlpineLinux
AlpineLinuxadded 2025/06/25 5:15 p.m.2 views

CVE-2025-6442

Ruby WEBrick readheader HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions. The...

6.5CVSS7AI score0.00257EPSS
Exploits0References2
OSV
OSVadded 2025/06/25 5:15 p.m.3 views

AZL-64352 CVE-2025-6442 affecting package ruby for versions less than 3.3.5-4

Ruby WEBrick readheader HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions. The...

6.5CVSS6.8AI score0.00257EPSS
Exploits0References1
NVD
NVDadded 2025/06/25 5:15 p.m.4 views

CVE-2025-6442

Ruby WEBrick readheader HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions. The...

6.5CVSS0.00257EPSS
Exploits0References2
OSV
OSVadded 2025/06/25 5:15 p.m.3 views

DEBIAN-CVE-2025-6442

Ruby WEBrick readheader HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions. The...

5.9CVSS6.6AI score0.00257EPSS
Exploits0References1
OSV
OSVadded 2025/06/25 5:15 p.m.0 views

UBUNTU-CVE-2025-6442

Ruby WEBrick readheader HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions. The...

6.5CVSS6.8AI score0.00257EPSS
Exploits0References5
CVE
CVEadded 2025/06/25 4:52 p.m.55 views

CVE-2025-6442

CVE-2025-6442 affects Ruby WEBrick: the vulnerability is a flaw in read_headers that causes inconsistent termination parsing of HTTP headers, enabling HTTP request smuggling under certain proxy conditions. Affected are Ruby WEBrick and Rubygem-WeBrick components across several platforms (e.g., Ru...

6.5CVSS6.8AI score0.00257EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2025/06/25 4:52 p.m.4 views

CVE-2025-6442 Ruby WEBrick read_header HTTP Request Smuggling Vulnerability

Ruby WEBrick readheader HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions. The...

6.5CVSS0.00257EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/06/25 4:52 p.m.2 views

CVE-2025-6442 Ruby WEBrick read_header HTTP Request Smuggling Vulnerability

Ruby WEBrick readheader HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions. The...

6.5CVSS6.6AI score0.00257EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2025/06/25 4:52 p.m.5 views

CVE-2025-6442

Ruby WEBrick readheader HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions. The...

6.5CVSS6.6AI score0.00257EPSS
Exploits0
CNNVD
CNNVDadded 2025/06/25 12:0 a.m.1 views

Webrick 环境问题漏洞

Webrick is an HTTP server toolkit open-sourced by The Ruby Programming Language. Webrick suffers from an environment issue vulnerability that stems from inconsistent parsing of HTTP header terminators by the readheaders method, which could lead to an HTTP request entrapment attack...

6.5CVSS6.4AI score0.00257EPSS
Exploits0References4
Redos
Redosadded 2025/06/25 12:0 a.m.5 views

ROS-20250625-05

Vulnerability of components from memcachestore.rb and rediscachestore.rb of Ruby on Rails software platform is related to recovery of invalid data structure in memory. Exploitation of the vulnerability could allow a remote attacker to gain access to sensitive data, compromise its integrity, as we...

9.8CVSS8.8AI score0.90128EPSS
Exploits5
Redos
Redosadded 2025/06/25 12:0 a.m.4 views

ROS-20250625-07

Vulnerability of translate function from translationhelper.rb of Ruby on Rails software platform is related to flaws in the measures used to protect web page structures. Exploitation of the vulnerability allows an attacker acting remotely to affect data integrity...

6.1CVSS8.8AI score0.01184EPSS
Exploits0
Redos
Redosadded 2025/06/25 12:0 a.m.3 views

ROS-20250625-04

A vulnerability in the Ruby on Rails software platform is related to a CSRF vulnerability in the rails-ujs module. Exploitation of the vulnerability could allow an attacker acting remotely to send CSRF tokens to the wrong domains. invalid domains...

6.5CVSS8.8AI score0.00427EPSS
Exploits1
Redos
Redosadded 2025/06/25 12:0 a.m.3 views

ROS-20250625-03

Vulnerability of eachpair function from strongparameters.rb of Ruby on Rails software platform is related to recovery of an invalid data structure in memory. Exploitation of the vulnerability could allow a remote attacker to gain access to confidential data Vulnerability in Ruby on Rails software...

7.5CVSS8.9AI score0.07389EPSS
Exploits2
SUSE CVE
SUSE CVEadded 2025/06/24 11:24 p.m.1 views

SUSE CVE-2025-6442

Ruby WEBrick readheader HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions. The...

6.5CVSS7AI score0.00257EPSS
Exploits0References6
Rows per page
Query Builder