Lucene search
K

917 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/23 8:40 a.m.6 views

Malicious code in chalk-henson (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/23 8:40 a.m.8 views

Malicious code in chalk-cli (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSV
added 2025/12/23 8:40 a.m.4 views

MAL-2025-192896 Malicious code in chalk-cli (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

6.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/23 8:40 a.m.8 views

Malicious code in activestorage-redundancy (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSV
added 2025/12/23 8:40 a.m.4 views

MAL-2025-192894 Malicious code in activestorage-redundancy (RubyGems)

--- -= Per source details. Do not edit below this line.=-...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/12/02 3:12 p.m.5 views

EUVD-2025-200264

Malicious code in pgresultinit RubyGems...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/12/02 3:12 p.m.8 views

Malicious code in pg_result_init (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 007d07edb120233aab0539e4646e8b634d2a95e2df9e6179bb9b2b6eb90f5a97 The OpenSSF Package Analysis project identified 'pgresultinit' @ 2.0.9 rubygems as malicious. It is considered malicious because: - The package...

6.9AI score
Exploits0
OSV
OSV
added 2025/12/02 3:12 p.m.7 views

MAL-2025-191667 Malicious code in pg_result_init (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 007d07edb120233aab0539e4646e8b634d2a95e2df9e6179bb9b2b6eb90f5a97 The OpenSSF Package Analysis project identified 'pgresultinit' @ 2.0.9 rubygems as malicious. It is considered malicious because: - The package...

6.8AI score
Exploits0
RedHat Linux
RedHat Linux
added 2025/11/04 11:19 a.m.5 views

rack: Rack memory exhaustion denial of service

A denial of service flaw has been found in the rubygems rack package. Rack::Multipart::Parser can accumulate unbounded data when a multipart part’s header block never terminates with the required blank line CRLFCRLF. The parser keeps appending incoming bytes to memory without a size cap, allowing...

7.5CVSS6.8AI score0.00868EPSS
Exploits0References8
Gitee
Gitee
added 2025/09/21 10:50 p.m.92 views

geminabox

It is an offensive tool for RubyGem hosting. The repository contains a simple RubyGem hosting system called Gem in a Box. It allows users to host their own RubyGems, and it includes features such as user authentication, gem versioning, and a web interface for browsing and downloading gems. The to...

7.2AI score
Exploits0
Ubuntu
Ubuntu
added 2025/09/15 1:51 p.m.4 views

USN-7747-1: RubyGems vulnerability

It was discovered that RubyGems incorrectly handled certain regular expressions. An attacker could possibly use this issue to cause RubyGems to consume resources, leading to a regular expression denial of service ReDoS...

5.3CVSS7.3AI score0.01698EPSS
Exploits0
Gitee
Gitee
added 2025/09/06 2:37 a.m.101 views

ruby-advisory-db

This is a database of security advisories for Ruby libraries, maintained by the ruby-advisory-db project. The database contains a list of directories that match the names of Ruby libraries on rubygems.org, with each directory containing one or more advisory files for the library. Each advisory fi...

6.7AI score
Exploits0
OSV
OSV
added 2025/09/03 12:43 p.m.6 views

USN-7735-1 rubygems vulnerabilities

It was discovered that RubyGems incorrectly handled certain regular expressions. An attacker could use this issue to cause RubyGems to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS. CVE-2023-28755 It was discovered that RubyGems incorrectly handled decompresse...

7.5CVSS6.8AI score0.02637EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2025/09/03 12:43 p.m.5 views

USN-7735-1: RubyGems vulnerabilities

It was discovered that RubyGems incorrectly handled certain regular expressions. An attacker could use this issue to cause RubyGems to crash, resulting in a denial of service. This issue only affected Ubuntu 22.04 LTS. CVE-2023-28755 It was discovered that RubyGems incorrectly handled decompresse...

7.5CVSS7.7AI score0.02637EPSS
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/01 10:17 a.m.7 views

Malicious code in authzd-client (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 45ba3e72eb15bda66737b4c0b7addefe2fa72e79d4a38a82e9dd53722cc04f7b The OpenSSF Package Analysis project identified 'authzd-client' @ 0.11.10.r813fef313 rubygems as malicious. It is considered malicious because: ...

7.2AI score
Exploits0
OSV
OSV
added 2025/09/01 10:17 a.m.4 views

MAL-2025-46925 Malicious code in authzd-client (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 45ba3e72eb15bda66737b4c0b7addefe2fa72e79d4a38a82e9dd53722cc04f7b The OpenSSF Package Analysis project identified 'authzd-client' @ 0.11.10.r813fef313 rubygems as malicious. It is considered malicious because: ...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/01 9:57 a.m.5 views

Malicious code in advisory_db_toolkit (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6f9757e1ad29ad430d32886a0fcfa47e48a29e5e4af901f48e305216133028e6 The OpenSSF Package Analysis project identified 'advisorydbtoolkit' @ 99.99.99 rubygems as malicious. It is considered malicious because: - The...

7.2AI score
Exploits0
OSV
OSV
added 2025/09/01 9:57 a.m.3 views

MAL-2025-46924 Malicious code in advisory_db_toolkit (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6f9757e1ad29ad430d32886a0fcfa47e48a29e5e4af901f48e305216133028e6 The OpenSSF Package Analysis project identified 'advisorydbtoolkit' @ 99.99.99 rubygems as malicious. It is considered malicious because: - The...

7.2AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/01 9:57 a.m.7 views

Malicious code in github_chatops_extensions (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6269b59c516350c690f7fdf09dff674c52173f38074e8ac6f7b012352851797b The OpenSSF Package Analysis project identified 'githubchatopsextensions' @ 0.5.2.96.g33cefed rubygems as malicious. It is considered malicious...

7.2AI score
Exploits0
OSV
OSV
added 2025/09/01 9:57 a.m.3 views

MAL-2025-46926 Malicious code in github_chatops_extensions (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 6269b59c516350c690f7fdf09dff674c52173f38074e8ac6f7b012352851797b The OpenSSF Package Analysis project identified 'githubchatopsextensions' @ 0.5.2.96.g33cefed rubygems as malicious. It is considered malicious...

7.2AI score
Exploits0
Rows per page
Query Builder