12 matches found
GHSA-3V45-F3VH-WG7M vulnerabilities
Vulnerabilities for packages: ruby4.0-fluentd-kubernetes-daemonset, kube-logging-operator, ruby3.3-fluentd-kubernetes-daemonset, ruby3.4-fluentd-kubernetes-daemonset, ruby3.2-fluentd-kubernetes-daemonset...
GHSA-475M-PH3X-64GP vulnerabilities
Vulnerabilities for packages: ruby4.0-fluentd-kubernetes-daemonset, kube-logging-operator, ruby3.3-fluentd-kubernetes-daemonset, ruby3.4-fluentd-kubernetes-daemonset, ruby3.2-fluentd-kubernetes-daemonset...
GHSA-9PPP-W3G4-FH4Q vulnerabilities
Vulnerabilities for packages: ruby4.0-fluentd-kubernetes-daemonset, kube-logging-operator, ruby3.3-fluentd-kubernetes-daemonset, ruby3.4-fluentd-kubernetes-daemonset, ruby3.2-fluentd-kubernetes-daemonset...
CVE-2026-54903 vulnerabilities
Vulnerabilities for packages: ruby4.0-fluentd-kubernetes-daemonset, kube-logging-operator, ruby3.3-fluentd-kubernetes-daemonset, ruby3.4-fluentd-kubernetes-daemonset, ruby3.2-fluentd-kubernetes-daemonset...
GHSA-6WX8-W4F5-WWCR vulnerabilities
Vulnerabilities for packages: kube-fluentd-operator, ruby3.4-rails, ruby3.3-rails, ruby4.0-fluentd-kubernetes-daemonset, kube-logging-operator, ruby4.0-rails, ruby3.3-fluentd-kubernetes-daemonset, ruby3.4-fluentd-kubernetes-daemonset, ruby3.2-fluentd-kubernetes-daemonset, ruby3.2-rails...
CVE-2026-47241 vulnerabilities
Vulnerabilities for packages: logstash-fips, truffleruby, gitlab-rails-ce-fips, kube-fluentd-operator, logstash, ruby3.3-rails, ruby3.4-rails, kube-logging-operator, ruby4.0-rails, ruby3.2-rails, gitlab-rails-ce...
GHSA-WX95-C6CV-8532 vulnerabilities
Vulnerabilities for packages: ruby3.3-rails, ruby4.0-rails, ruby3.2-rails, ruby3.4-rails...
MiracleLinux 8 : ruby:3.3 (AXSA:2024-8830:01)
The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8830:01 advisory. rexml: DoS vulnerability in REXML CVE-2024-39908 rexml: rubygem-rexml: DoS when parsing an XML having many specific characters such as whitespace...
MiracleLinux 9 : ruby:3.3 (AXSA:2025-11557:01)
The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11557:01 advisory. resolv: Denial of Service in resolv gem CVE-2025-24294 rexml: REXML denial of service CVE-2025-58767 When using the + operator to combine URIs,...
RockyLinux 8 : ruby:3.3 (RLSA-2025:23062)
The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:23062 advisory. resolv: Denial of Service in resolv gem CVE-2025-24294 rexml: REXML denial of service CVE-2025-58767 Tenable has extracted the preceding description blo...
GHSA-W9PC-FMGC-VXVW vulnerabilities
Vulnerabilities for packages: ruby3.2-rack, ruby3.4-rails, ruby3.4-rack, ruby3.2-rails, gitlab-cng, ruby3.3-rails, ruby4.0-rack, logstash, ruby3.3-rack...
USN-8478-1 ruby2.7, ruby3.0, ruby3.2, ruby3.3 vulnerabilities
It was discovered that Ruby's Net::IMAP library did not properly verify that TLS encryption was started after issuing a STARTTLS command. A remote attacker could use this to perform a machine-in-the-middle attack and silently bypass TLS encryption. CVE-2026-42246 It was discovered that Ruby's...