Lucene search
+L

89 matches found

osv
osv
added 2026/07/07 1:48 p.m.4 views

MINI-X9WF-8324-H6JW

Bulletin has no description...

6.5CVSS5.9AI score0.00351EPSS
Exploits0
nessus
nessus
added 2026/01/16 12:0 a.m.6 views

MiracleLinux 7 : ruby-2.0.0.648-35.0.1.el7.AXS7 (AXSA:2019-3890:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-3890:02 advisory. rubygems: Installing a malicious gem may lead to arbitrary code execution CVE-2019-8324 rubygems: Escape sequence injection vulnerability in gem own...

8.8CVSS7.6AI score0.03372EPSS
Exploits0References5
circl
circl
added 2025/11/11 1:37 p.m.6 views

CVE-2025-8324

creationtimestamp| type| source ---|---|--- 2025-11-11 13:37:23+00:00| seen| https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m5eaxeqpzix2 2025-11-11 13:48:48+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m5ebo5dfn72s 2025-11-11 14:06:19+00:00| seen|...

9.8CVSS5.7AI score0.01706EPSS
Exploits0References5
nvd
nvd
added 2025/11/11 1:15 p.m.6 views

CVE-2025-8324

Zohocorp ManageEngine Analytics Plus versions 6170 and below are vulnerable to Unauthenticated SQL Injection due to the improper filter configuration...

9.8CVSS0.01706EPSS
Exploits0References1
nessus
nessus
added 2025/08/19 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2019-8324

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in RubyGems 2.6 and later through 3.0.2. A crafted gem with a multi-line name is not handled correctly. Therefore, an attacker could...

8.8CVSS7.6AI score0.03219EPSS
Exploits0References2
osv
osv
added 2025/08/14 6:52 p.m.3 views

MAL-2025-8324 Malicious code in @lbnqduy/congenial-waffle (npm)

The package @lbnqduy/congenial-waffle was found to contain malicious code...

7.2AI score
Exploits0
circl
circl
added 2024/10/01 11:54 a.m.6 views

CVE-2024-8324

creationtimestamp| type| source ---|---|--- 2024-10-01 11:54:32+00:00| seen| https://t.me/cvedetector/6737...

6.4CVSS4.8AI score0.00334EPSS
Exploits0References1
osv
osv
added 2024/06/06 12:21 p.m.11 views

CGA-3HX9-8324-8RV8

Bulletin has no description...

4.3CVSS5.7AI score0.0108EPSS
Exploits0
nessus
nessus
added 2024/04/28 12:0 a.m.25 views

RHEL 6 / 7 : rh-ruby23-ruby (RHSA-2019:1151)

The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2019:1151 advisory. Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management...

8.8CVSS8.1AI score0.03219EPSS
Exploits0References4
nessus
nessus
added 2024/04/22 12:0 a.m.30 views

RHEL 7 : CloudForms 4.7.5 (RHSA-2019:1429)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:1429 advisory. Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual...

8.8CVSS7.7AI score0.04212EPSS
Exploits1References41
nessus
nessus
added 2023/11/06 12:0 a.m.29 views

Rocky Linux 8 : ruby:2.5 (RLSA-2019:1972)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2019:1972 advisory. - An issue was discovered in RubyGems 2.6 and later through 3.0.2. A crafted gem with a multi-line name is not handled correctly. Therefore, an attacker could...

8.8CVSS7.7AI score0.03219EPSS
Exploits0References3
nessus
nessus
added 2023/10/20 12:0 a.m.34 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : Ruby vulnerabilities (USN-3945-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3945-1 advisory. It was discovered that Ruby incorrectly handled certain RubyGems. An attacker could possibly use this issue to execute arbitrary...

8.8CVSS7.3AI score0.04212EPSS
Exploits1References7
openvas
openvas
added 2023/03/08 12:0 a.m.29 views

Debian: Security Advisory (DLA-360-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.9AI score0.00675EPSS
Exploits3References2
susecve
susecve
added 2023/02/15 5:12 a.m.3 views

SUSE CVE-2015-8324

The ext4 implementation in the Linux kernel before 2.6.34 does not properly track the initialization of certain data structures, which allows physically proximate attackers to cause a denial of service NULL pointer dereference and panic via a crafted USB device, related to the ext4fillsuper...

4.9CVSS6.4AI score0.00426EPSS
Exploits0References3
openvas
openvas
added 2021/06/09 12:0 a.m.20 views

SUSE: Security Advisory (SUSE-SU-2019:1804-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.10715EPSS
Exploits1References4
nessus
nessus
added 2021/01/29 12:0 a.m.40 views

CentOS 8 : ruby:2.5 (CESA-2019:1972)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2019:1972 advisory. - rubygems: Installing a malicious gem may lead to arbitrary code execution CVE-2019-8324 Note that Nessus has not tested for this issue but has instead relied...

8.8CVSS8.1AI score0.03219EPSS
Exploits0References2
mageia
mageia
added 2020/11/27 8:14 p.m.120 views

Updated jruby packages fix security vulnerabilities

Response Splitting attack in the HTTP server of WEBrick CVE-2017-17742. Delete directory using symlink when decompressing tar CVE-2019-8320. Escape sequence injection vulnerability in verbose CVE-2019-8321. Escape sequence injection vulnerability in gem owner CVE-2019-8322. Escape sequence...

8.8CVSS8.5AI score0.0576EPSS
Exploits2References5
nessus
nessus
added 2020/08/18 12:0 a.m.121 views

Debian DLA-2330-1 : jruby security update

Several vulnerabilities were fixed in JRuby, a 100% pure-Java implementation of Ruby. CVE-2017-17742 CVE-2019-16254 HTTP Response Splitting attacks in the HTTP server of WEBrick. CVE-2019-16201 Regular Expression Denial of Service vulnerability of WEBrick's Digest access authentication...

8.8CVSS6.9AI score0.0576EPSS
Exploits2References13
openvas
openvas
added 2020/08/17 12:0 a.m.29 views

Debian: Security Advisory (DLA-2330-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.0576EPSS
Exploits2References4
redhat
redhat
added 2020/06/30 12:12 p.m.62 views

Important: Red Hat Security Advisory: ruby security update

An update for ruby is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact ...

8.8CVSS7.1AI score0.07968EPSS
Exploits0References7
Rows per page
Query Builder