Lucene search
+L

741 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.5 views

Fedora 42 : ruby (2025-5805ed7a8f)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-5805ed7a8f advisory. - Upgrade to Ruby 3.4.7. - Fix URI Credential Leakage Bypass previous fixes. Resolves: CVE-2025-61594 - Fix REXML denial of service. Resolves:...

7.5CVSS7.1AI score0.0051EPSS
Exploits0References3
Redos
Redos
added 2025/11/11 12:0 a.m.5 views

ROS-20251111-05

The vulnerability in the Ruby REXML XML toolkit is related to the fact that the application does not properly control the internal resource consumption when analyzing malformed XML code containing multiple XML declarations. Exploitation of the vulnerability could allow an attacker to cause a deni...

5.3CVSS6AI score0.00231EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/04 12:0 a.m.4 views

macOS 15.x < 15.7.2 Multiple Vulnerabilities (125635)

The remote host is running a version of macOS / Mac OS X that is 15.x prior to 15.7.2. It is, therefore, affected by multiple vulnerabilities: - A memory corruption issue was addressed with improved memory handling. This issue is fixed in watchOS 26.1, iOS 18.7.2 and iPadOS 18.7.2, macOS Tahoe...

9.8CVSS7AI score0.01429EPSS
Exploits4References62
Tenable Nessus
Tenable Nessus
added 2025/11/03 12:0 a.m.7 views

macOS 14.x < 14.8.2 Multiple Vulnerabilities (125636)

The remote host is running a version of macOS / Mac OS X that is 14.x prior to 14.8.2. It is, therefore, affected by multiple vulnerabilities: - There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This cou...

9.8CVSS6.9AI score0.73495EPSS
Exploits7References52
Tenable Nessus
Tenable Nessus
added 2025/11/03 12:0 a.m.15 views

macOS 26.x < 26.1 Multiple Vulnerabilities (125634)

The remote host is running a version of macOS / Mac OS X that is 26.x prior to 26.1. It is, therefore, affected by multiple vulnerabilities: - A memory corruption issue was addressed with improved lock state checking. This issue is fixed in iOS 18.7.2 and iPadOS 18.7.2, iOS 26.1 and iPadOS 26.1,...

9.8CVSS7.5AI score0.03239EPSS
Exploits81References115
Tenable Nessus
Tenable Nessus
added 2025/11/01 12:0 a.m.4 views

Fedora 41 : ruby (2025-b10099f608)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-b10099f608 advisory. Upgrade to Ruby 3.3.10. CVE-2025-58767 ruby: REXML denial of service rhbz2396203 Tenable has extracted the preceding description block directly from...

5.3CVSS7AI score0.00231EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/28 12:0 a.m.6 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Ruby vulnerabilities (USN-7840-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7840-1 advisory. It was discovered that the REXML module bunded into Ruby incorrectly handled parsing XML documents with repeated instances of...

7.5CVSS6.8AI score0.02064EPSS
Exploits1References7
Ubuntu
Ubuntu
added 2025/10/27 2:39 p.m.6 views

USN-7840-1: Ruby vulnerabilities

It was discovered that the REXML module bunded into Ruby incorrectly handled parsing XML documents with repeated instances of certain characters. An attacker could possibly use this issue to cause REXML to consume excessive resources, leading to a denial of service. Ubuntu 18.04 LTS and Ubuntu...

7.5CVSS6.7AI score0.02064EPSS
Exploits1
OSV
OSV
added 2025/10/27 2:39 p.m.5 views

USN-7840-1 ruby2.3, ruby2.5, ruby2.7 vulnerabilities

It was discovered that the REXML module bunded into Ruby incorrectly handled parsing XML documents with repeated instances of certain characters. An attacker could possibly use this issue to cause REXML to consume excessive resources, leading to a denial of service. Ubuntu 18.04 LTS and Ubuntu...

7.5CVSS6.7AI score0.02064EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2021-0797

Malware in sbrugna...

7.5CVSS6.5AI score0.05061EPSS
Exploits0References34
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-1802

Malicious code in bioql PyPI...

5.3CVSS5.9AI score0.02064EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-4143

Malicious code in bioql PyPI...

5CVSS8.3AI score0.06671EPSS
Exploits0References37
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-2644

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.01283EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-2501

Malicious code in bioql PyPI...

7.5CVSS6.2AI score0.01192EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-2251

Malicious code in bioql PyPI...

4.3CVSS6.3AI score0.01493EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-2910

Malicious code in bioql PyPI...

8.7CVSS7.1AI score0.01429EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-2666

Malicious code in bioql PyPI...

5.9CVSS6.7AI score0.01205EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-29746

Malicious code in bioql PyPI...

5.3CVSS6.2AI score0.00231EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/09/30 12:0 a.m.8 views

Amazon Linux 2023 : ruby3.2, ruby3.2-bundled-gems, ruby3.2-default-gems (ALAS2023-2025-1204)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1204 advisory. REXML is an XML toolkit for Ruby. The REXML gems from 3.3.3 to 3.4.1 has a DoS vulnerability when parsing XML containing multiple XML declarations. If you need to parse untrusted XMLs, you may be...

5.3CVSS6.9AI score0.00231EPSS
Exploits0References4
Amazon
Amazon
added 2025/09/29 12:0 a.m.6 views

Low: ruby3.2

Issue Overview: REXML is an XML toolkit for Ruby. The REXML gems from 3.3.3 to 3.4.1 has a DoS vulnerability when parsing XML containing multiple XML declarations. If you need to parse untrusted XMLs, you may be impacted to these vulnerabilities. The REXML gem 3.4.2 or later include the patches t...

5.3CVSS7.1AI score0.00231EPSS
Exploits0
Rows per page
Query Builder