CVE-2025-12790

A flaw was found in Rubygem MQTT. By default, the package used to not have hostname validation, resulting in possible Man-in-the-Middle MITM attack. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria...

PT-2025-45377

Name of the Vulnerable Software and Affected Versions Rubygem MQTT affected versions not specified Description The Rubygem MQTT package did not have hostname validation enabled by default, which could allow for a Man-in-the-Middle MITM attack. This means a malicious actor could potentially...

MQTT does not validate hostnames

A flaw was found in Rubygem MQTT. By default, the package used to not have hostname validation, resulting in possible Man-in-the-Middle MITM attack...

RockyLinux 8 : pcs (RLSA-2025:19719)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:19719 advisory. rubygem-rack: Rack QueryParser has an unsafe default allowing paramslimit bypass via semicolon- separated parameters CVE-2025-59830 rack: Rack's unbound...

RHEL 9 : pcs (RHSA-2025:19736)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:19736 advisory. The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: rubygem-rack: Rack...

pcs security update

0.11.9-2.el96.2 - Fixed CVE-2025-59830, CVE-2025-61770, CVE-2025-61771, CVE-2025-61772, CVE-2025-61919 by updating bundled rubygem rack Resolves: RHEL-120943, RHEL-121036, RHEL-123631, RHEL-123644, RHEL-124942...

openSUSE Security Advisory (SUSE-SU-2025:03467-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES15 Security Update : rubygem-puma (SUSE-SU-2025:03466-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03466-1 advisory. Update to version 5.6.9. - CVE-2024-45614: improper header normalization allows for clients to clobber proxy set headers, which can lead to...

SUSE-SU-2025:03467-1 Security update for rubygem-puma

This update for rubygem-puma fixes the following issues: Update to version 5.6.9. - CVE-2024-45614: improper header normalization allows for clients to clobber proxy set headers, which can lead to information leaks bsc1230848, fixed in an earlier update. - CVE-2024-21647: unbounded resource...

SUSE-SU-2025:03466-1 Security update for rubygem-puma

This update for rubygem-puma fixes the following issues: Update to version 5.6.9. - CVE-2024-45614: improper header normalization allows for clients to clobber proxy set headers, which can lead to information leaks bsc1230848, fixed in an earlier update. - CVE-2024-21647: unbounded resource...

EUVD-2019-0799

Malware in sbrugna...

EUVD-2021-1335

Malware in sbrugna...

EUVD-2017-0171

Malware in sbrugna...

EUVD-2020-0287

Malware in sbrugna...

EUVD-2014-0279

Malware in sbrugna...

EUVD-2020-0447

Malware in sbrugna...

EUVD-2020-0281

Malware in sbrugna...

EUVD-2021-0545

Malware in sbrugna...

EUVD-2019-0606

Malware in sbrugna...

EUVD-2020-0283

Malware in sbrugna...