2145 matches found
EUVD-2022-4029
Malicious code in bioql PyPI...
EUVD-2022-3436
Malicious code in bioql PyPI...
MAL-2025-47816 Malicious code in your-gem-name12 (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in your-gem-name12 (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
MAL-2025-47815 Malicious code in sqlcommenter_rails (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in sqlcommenter_rails (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
Ubuntu 22.04 LTS : RubyGems vulnerability (USN-7747-1)
The remote Ubuntu 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-7747-1 advisory. It was discovered that RubyGems incorrectly handled certain regular expressions. An attacker could possibly use this issue to cause RubyGems to consume resources,...
Ubuntu: Security Advisory (USN-7747-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-7747-1 rubygems vulnerability
It was discovered that RubyGems incorrectly handled certain regular expressions. An attacker could possibly use this issue to cause RubyGems to consume resources, leading to a regular expression denial of service ReDoS...
Ubuntu: Security Advisory (USN-7735-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 22.04 LTS / 25.04 : RubyGems vulnerabilities (USN-7735-1)
The remote Ubuntu 22.04 LTS / 25.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7735-1 advisory. It was discovered that RubyGems incorrectly handled certain regular expressions. An attacker could use this issue to cause RubyGems to crash,...
MAL-2025-46943 Malicious code in service-catalog-client (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis b0ae0aeaeb46ba7f8b11f6d147563511507aba9c9464d22afe7caae70697ec8d The OpenSSF Package Analysis project identified 'service-catalog-client' @ 0.7.0 rubygems as malicious. It is considered malicious because: - Th...
MAL-2025-46942 Malicious code in secret-scanning-proto (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1465959a0117b88d5bd9a996a386b97399277821a3199d62026605750c8194b7 The OpenSSF Package Analysis project identified 'secret-scanning-proto' @ 99.99.99 rubygems as malicious. It is considered malicious because: -...
Malicious code in proto-education-web (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis fe0791b8a3d9af1c4b04c567db2fc37ae9cbacd29a4ace0c5e07b75720f6c718 The OpenSSF Package Analysis project identified 'proto-education-web' @ 0.0.7.ref8a4ad331 rubygems as malicious. It is considered malicious...
MAL-2025-46928 Malicious code in monolith-twirp-git_src_migrator-monolith (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 060f3ebfeb0862be79294c75a97aaa823e0378ae4ef10ce1910472c923b31dc3 The OpenSSF Package Analysis project identified 'monolith-twirp-gitsrcmigrator-monolith' @ 1.6.3 rubygems as malicious. It is considered malicio...
MAL-2025-46958 Malicious code in monolith-twirp-webhooks-core (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 2ce839cee3a269944cf305057d6746895eb15dec90dbbe6dd48210569287082d The OpenSSF Package Analysis project identified 'monolith-twirp-webhooks-core' @ 1.7.0 rubygems as malicious. It is considered malicious because...
Malicious code in monolith-twirp-features-featuresync (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis f53c57dca1a60f5e0bcea26028d79bc5d8f4427b2dfb2dc1c29c9babe625a2bb The OpenSSF Package Analysis project identified 'monolith-twirp-features-featuresync' @ 1.0.0 rubygems as malicious. It is considered malicious...
Malicious code in prose_diff (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1b4d01c12dfc0e3356a6e2613833c8afd50caee6c1cd2882fe4be1b84e182fdf The OpenSSF Package Analysis project identified 'prosediff' @ 99.99.99 rubygems as malicious. It is considered malicious because: - The package...
Malicious code in turboghas-client (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ad6c1ebcf6bfd3fd771aad2e5628f388059a1675ca82b4196ede826dd02e05bf The OpenSSF Package Analysis project identified 'turboghas-client' @ 99.99.99 rubygems as malicious. It is considered malicious because: - The...
MAL-2025-46964 Malicious code in turboghas-client (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis ad6c1ebcf6bfd3fd771aad2e5628f388059a1675ca82b4196ede826dd02e05bf The OpenSSF Package Analysis project identified 'turboghas-client' @ 99.99.99 rubygems as malicious. It is considered malicious because: - The...