Lucene search
K

41 matches found

NVD
NVD
added 2025/01/09 1:15 a.m.14 views

CVE-2023-28120

There is a vulnerability in ActiveSupport if the new bytesplice method is called on a SafeBuffer with untrusted user input...

5.3CVSS0.00907EPSS
Exploits0References6
OSV
OSV
added 2025/01/09 1:15 a.m.13 views

CVE-2023-28120

There is a vulnerability in ActiveSupport if the new bytesplice method is called on a SafeBuffer with untrusted user input...

5.3CVSS6.6AI score0.00907EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/01/09 1:15 a.m.51 views

CVE-2023-28120

There is a vulnerability in ActiveSupport if the new bytesplice method is called on a SafeBuffer with untrusted user input...

5.3CVSS6.4AI score0.00907EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/01/09 12:33 a.m.13 views

CVE-2023-28120

There is a vulnerability in ActiveSupport if the new bytesplice method is called on a SafeBuffer with untrusted user input...

7.1AI score0.00907EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/01/09 12:33 a.m.55 views

CVE-2023-28120

There is a vulnerability in ActiveSupport if the new bytesplice method is called on a SafeBuffer with untrusted user input...

0.00907EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2025/01/09 12:33 a.m.41 views

CVE-2023-28120

There is a vulnerability in ActiveSupport if the new bytesplice method is called on a SafeBuffer with untrusted user input...

5.3CVSS7.6AI score0.00907EPSS
Exploits0
OSV
OSV
added 2024/07/05 11:8 a.m.2 views

OESA-2024-1800 rubygem-activesupport security update

A toolkit of support libraries and Ruby core extensions extracted from the Rails framework. Rich support for multibyte strings, internationalization, time zones, and testing. Security Fixes: A Cross-Site-Scripting vulnerability was found in rubygem ActiveSupport. If the new bytesplice method is...

5.3CVSS7AI score0.00907EPSS
Exploits0References2
OSV
OSV
added 2024/07/05 11:8 a.m.3 views

OESA-2024-1797 rubygem-activesupport security update

A toolkit of support libraries and Ruby core extensions extracted from the Rails framework. Rich support for multibyte strings, internationalization, time zones, and testing. Security Fixes: A Cross-Site-Scripting vulnerability was found in rubygem ActiveSupport. If the new bytesplice method is...

5.3CVSS7AI score0.00907EPSS
Exploits0References2
OSV
OSV
added 2024/07/05 11:8 a.m.2 views

OESA-2024-1799 rubygem-activesupport security update

A toolkit of support libraries and Ruby core extensions extracted from the Rails framework. Rich support for multibyte strings, internationalization, time zones, and testing. Security Fixes: A Cross-Site-Scripting vulnerability was found in rubygem ActiveSupport. If the new bytesplice method is...

5.3CVSS7AI score0.00907EPSS
Exploits0References2
OSV
OSV
added 2024/07/05 11:8 a.m.2 views

OESA-2024-1798 rubygem-activesupport security update

A toolkit of support libraries and Ruby core extensions extracted from the Rails framework. Rich support for multibyte strings, internationalization, time zones, and testing. Security Fixes: A Cross-Site-Scripting vulnerability was found in rubygem ActiveSupport. If the new bytesplice method is...

5.3CVSS7AI score0.00907EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/05/29 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2023:2304-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.6AI score0.0183EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2023/05/26 12:0 a.m.25 views

SUSE SLES15 Security Update : rmt-server (SUSE-SU-2023:2294-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2294-1 advisory. Updated to version 2.13: - CVE-2023-28120: Fixed a potential XSS issue in an embedded dependency bsc1209507. - CVE-2023-27530: Fixe...

7.5CVSS6.6AI score0.0183EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2023/05/26 12:0 a.m.21 views

SUSE SLES15 Security Update : rmt-server (SUSE-SU-2023:2304-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2304-1 advisory. Updated to version 2.13: - CVE-2023-28120: Fixed a potential XSS issue in an embedded dependency bsc1209507. - CVE-2023-27530: Fixe...

7.5CVSS6.6AI score0.0183EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2023/05/26 12:0 a.m.22 views

SUSE SLES15 / openSUSE 15 Security Update : rmt-server (SUSE-SU-2023:2295-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2295-1 advisory. Updated to version 2.13: - CVE-2023-28120: Fixed a potential XSS issue in an embedded dependency bsc1209507. -...

7.5CVSS6.6AI score0.0183EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2023/05/25 12:0 a.m.29 views

SUSE SLES15 Security Update : rmt-server (SUSE-SU-2023:2280-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2280-1 advisory. Updated to version 2.13: - CVE-2023-28120: Fixed a potential XSS issue in an embedded dependency bsc1209507. - CVE-2023-27530: Fixe...

7.5CVSS6.6AI score0.0183EPSS
Exploits0References13
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/26 3:33 p.m.78 views

Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOPs

Summary Multiple vulnerabilities were fixed in IBM Cloud Pak for Watson AIOps version 3.7.1 Vulnerability Details CVEID:CVE-2023-0767 DESCRIPTION: Mozilla Network Security Services NSS, as used in Mozilla Firefox, could allow a remote attacker to execute arbitrary code on the system, caused by an...

9.8CVSS10AI score0.8377EPSS
Exploits22Affected Software1
RedHat Linux
RedHat Linux
added 2023/04/26 7:58 a.m.49 views

Moderate: Red Hat Security Advisory: Logging Subsystem 5.6.5 - Red Hat OpenShift security update

Logging Subsystem 5.6.5 - Red Hat OpenShift Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the Referenc...

5.3CVSS6.5AI score0.01063EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2023/04/15 12:0 a.m.34 views

Debian DSA-5389-1 : rails - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5389 advisory. Two vulnerabilities were discovered in rails, the Ruby based server-side MVC web application framework, which could lead to XSS and DOM based cross-site scripting...

6.3CVSS6.1AI score0.00907EPSS
Exploits0References8
Debian
Debian
added 2023/04/14 4:39 p.m.35 views

[SECURITY] [DSA 5389-1] rails security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5389-1 [email protected] https://www.debian.org/security/ Aron Xu April 14, 2023 https://www.debian.org/security/faq - -------------------------------------------------------------------------...

6.3CVSS8.4AI score0.00907EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/04/06 12:0 a.m.13 views

Fedora: Security Advisory for rubygem-actionmailbox (FEDORA-2023-7002afbbb8)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS7.7AI score0.00907EPSS
Exploits0References2
Rows per page
Query Builder