Lucene search
+L

290 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.8 views

MiracleLinux 9 : ruby:3.3 (AXSA:2025-9954:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9954:01 advisory. net-imap: Net::IMAP vulnerable to possible DoS by memory exhaustion CVE-2025-25186 CGI: Denial of Service in CGI::Cookie.parse CVE-2025-27219 uri:...

7.5CVSS7.1AI score0.00784EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.6 views

MiracleLinux 8 : ruby:3.3 (AXSA:2025-10474:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10474:01 advisory. net-imap: Net::IMAP vulnerable to possible DoS by memory exhaustion CVE-2025-25186 CGI: Denial of Service in CGI::Cookie.parse CVE-2025-27219 uri:...

7.5CVSS7.1AI score0.00784EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2025/11/25 1:2 a.m.5 views

net-imap rubygem vulnerable to possible DoS by memory exhaustion

...

6.5CVSS7AI score0.00412EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.7 views

TencentOS Server 4: ruby (TSSA-2025:0467)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0467 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

6.5CVSS6.9AI score0.00608EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-4076

Malicious code in bioql PyPI...

6.5CVSS7AI score0.00608EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-12559

Malicious code in bioql PyPI...

7.5CVSS6.7AI score0.00412EPSS
Exploits0References7
Rockylinux
Rockylinux
added 2025/10/03 7:56 p.m.8 views

ruby security update

An update is available for ruby. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Ruby is an extensible, interpreted, object-oriented, scripting language. It has...

7.5CVSS6.7AI score0.00784EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.9 views

EulerOS 2.0 SP13 : ruby (EulerOS-SA-2025-2140)

According to the versions of the ruby packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to versions 0.5.7, 0.4.20, 0.3.9, and 0.2.5, there is...

6.5CVSS6.4AI score0.00412EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.13 views

EulerOS 2.0 SP10 : ruby (EulerOS-SA-2025-2084)

According to the versions of the ruby packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to versions 0.5.7, 0.4.20, 0.3.9, and 0.2.5, there is...

6.5CVSS6.5AI score0.00412EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.9 views

EulerOS 2.0 SP10 : ruby (EulerOS-SA-2025-2112)

According to the versions of the ruby packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to versions 0.5.7, 0.4.20, 0.3.9, and 0.2.5, there is...

6.5CVSS6.5AI score0.00412EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.9 views

EulerOS 2.0 SP12 : ruby (EulerOS-SA-2025-2056)

According to the versions of the ruby packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to versions 0.5.7, 0.4.20, 0.3.9, and 0.2.5, there is...

6.5CVSS6.5AI score0.00412EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.10 views

EulerOS 2.0 SP12 : ruby (EulerOS-SA-2025-2025)

According to the versions of the ruby packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to versions 0.5.7, 0.4.20, 0.3.9, and 0.2.5, there is...

6.5CVSS6.5AI score0.00412EPSS
Exploits0References2
Amazon
Amazon
added 2025/09/08 12:0 a.m.8 views

Medium: ruby3.2

Issue Overview: Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to versions 0.5.7, 0.4.20, 0.3.9, and 0.2.5, there is a possibility for denial of service by memory exhaustion when net-imap reads server responses. At any time while the client is...

6.5CVSS6.6AI score0.00412EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/09/08 12:0 a.m.5 views

Amazon Linux 2023 : ruby3.2, ruby3.2-bundled-gems, ruby3.2-default-gems (ALAS2023-2025-1168)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1168 advisory. Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to versions 0.5.7, 0.4.20, 0.3.9, and 0.2.5, there is a possibility for denial of service by memory...

6.5CVSS6.3AI score0.00412EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2025/08/11 1:41 p.m.8 views

Security Bulletin: Astronomer with IBM is vulnerable to memory exhaustion due to the Net::IMAP package (CVE-2025-43857)

Summary Net::IMAP is used by Astronomer with IBM as part of the IMAP client functionality. Vulnerability Details CVEID:CVE-2025-43857 DESCRIPTION: Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to versions 0.5.7, 0.4.20, 0.3.9, and 0.2.5, there is a...

6.5CVSS6.9AI score0.00412EPSS
Exploits0Affected Software1
Rockylinux
Rockylinux
added 2025/07/29 1:38 p.m.7 views

ruby:3.3 security update

An update is available for module.ruby, module.rubygem-abrt, module.rubygem-pg, rubygem-pg, module.rubygem-mysql2, rubygem-mysql2, rubygem-abrt, ruby. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS6.7AI score0.00784EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/07/02 2:32 p.m.4 views

net-imap: Net::IMAP vulnerable to possible DoS by memory exhaustion

A flaw was found in Ruby's net-imap library. In certain versions, there is a possibility for denial of service by memory exhaustion in the net-imap response parser. At any time while the client is connected, a malicious server can send highly compressed uid-set data, which is automatically read b...

6.5CVSS5.8AI score0.00608EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/06/29 12:0 a.m.13 views

PT-2026-36987

Name of the Vulnerable Software and Affected Versions net-imap affected versions not specified Description A hostile IMAP server can trigger a computational denial-of-service attack on the client process during authentication using SCRAM-SHA1 or SCRAM-SHA256. By sending an arbitrarily large PBKDF...

9.8CVSS6AI score0.00429EPSS
Exploits0References43
Positive Technologies
Positive Technologies
added 2025/06/29 12:0 a.m.10 views

PT-2026-37183

Name of the Vulnerable Software and Affected Versions Net::IMAP versions prior to 0.3.10 Net::IMAP versions prior to 0.4.24 Net::IMAP versions prior to 0.5.14 Net::IMAP versions prior to 0.6.4 Description A man-in-the-middle attacker can cause the starttls function to return successfully without...

7.6CVSS5.8AI score0.00324EPSS
Exploits0References94
Redos
Redos
added 2025/06/19 12:0 a.m.6 views

ROS-20250619-02

A vulnerability in the Net::IMAP module of the Ruby programming language is related to uncontrolled memory allocation. memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of denial of service...

6.5CVSS7AI score0.00412EPSS
Exploits0
Rows per page
Query Builder