Lucene search
K

39 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2019-16201

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WEBrick::HTTPAuth::DigestAuth in Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 has a regular expression Denial of Service cause by...

7.8CVSS6.7AI score0.05128EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/09/15 12:0 a.m.63 views

RHEL 7 : rh-ruby25-ruby (RHSA-2021:2104)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2104 advisory. Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system...

8.1CVSS6.8AI score0.06811EPSS
Exploits2References20
Tenable Nessus
Tenable Nessus
added 2022/02/22 12:0 a.m.35 views

RHEL 8 : ruby:2.6 (RHSA-2022:0582)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:0582 advisory. Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system...

9.3CVSS6.8AI score0.06811EPSS
Exploits7References31
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.254 views

Rocky Linux 8 : ruby:2.5 (RLSA-2021:2587)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:2587 advisory. - Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 mishandles path checking within File.fnmatch functions. CVE-2019-15845 -...

8.1CVSS7.8AI score0.06811EPSS
Exploits2References19
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.31 views

Mageia: Security Advisory (MGASA-2019-0408)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.2AI score0.05128EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2021/07/02 12:0 a.m.68 views

Oracle Linux 8 : ruby:2.5 (ELSA-2021-2587)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-2587 advisory. ruby 2.5.9-107 - Update to Ruby 2.5.9. Remove Patch20: ruby-2.6.0-rdoc-6.0.1-fix-template-typo.patch; subsumed Resolves: rhbz1952626 - Resolv::DNS:...

8.1CVSS6.9AI score0.06811EPSS
Exploits2References9
RedHat Linux
RedHat Linux
added 2021/06/29 4:24 p.m.71 views

Moderate: Red Hat Security Advisory: ruby:2.5 security, bug fix, and enhancement update

An update for the ruby:2.5 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.1CVSS6.7AI score0.06811EPSS
Exploits2References11
OSV
OSV
added 2021/06/29 1:58 p.m.24 views

ALSA-2021:2587 Moderate: ruby:2.5 security, bug fix, and enhancement update

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. The following packages have been upgraded to a later upstream version: ruby 2.5.9. BZ1952626 Security Fixes: ruby: NUL injection vulnerability of...

8.1CVSS8.2AI score0.06811EPSS
Exploits2References9
AlmaLinux
AlmaLinux
added 2021/06/29 1:58 p.m.91 views

Moderate: ruby:2.5 security, bug fix, and enhancement update

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. The following packages have been upgraded to a later upstream version: ruby 2.5.9. BZ1952626 Security Fixes: ruby: NUL injection vulnerability of...

8.1CVSS8.1AI score0.06811EPSS
Exploits2References9
CBLMariner
CBLMariner
added 2021/06/09 3:50 a.m.19 views

CVE-2019-16201 affecting package ruby 2.6.3-3

CVE-2019-16201 affecting package ruby 2.6.3-3. An upgraded version of the package is available that resolves this issue...

7.8CVSS9.8AI score0.05128EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2021/05/26 7:41 a.m.99 views

Moderate: Red Hat Security Advisory: rh-ruby25-ruby security, bug fix, and enhancement update

An update for rh-ruby25-ruby is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

8.1CVSS6.7AI score0.06811EPSS
Exploits2References10
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.40 views

SUSE: Security Advisory (SUSE-SU-2020:0737-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7AI score0.29726EPSS
Exploits8References10
Mageia
Mageia
added 2020/11/27 8:14 p.m.120 views

Updated jruby packages fix security vulnerabilities

Response Splitting attack in the HTTP server of WEBrick CVE-2017-17742. Delete directory using symlink when decompressing tar CVE-2019-8320. Escape sequence injection vulnerability in verbose CVE-2019-8321. Escape sequence injection vulnerability in gem owner CVE-2019-8322. Escape sequence...

8.8CVSS8.5AI score0.0576EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2020/11/04 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-2395)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.0576EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/10/21 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-2219)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8AI score0.05128EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2020/09/29 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-2139)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7AI score0.06811EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/08/18 12:0 a.m.121 views

Debian DLA-2330-1 : jruby security update

Several vulnerabilities were fixed in JRuby, a 100% pure-Java implementation of Ruby. CVE-2017-17742 CVE-2019-16254 HTTP Response Splitting attacks in the HTTP server of WEBrick. CVE-2019-16201 Regular Expression Denial of Service vulnerability of WEBrick's Digest access authentication...

8.8CVSS6.9AI score0.0576EPSS
Exploits2References13
OpenVAS
OpenVAS
added 2020/08/17 12:0 a.m.28 views

Debian: Security Advisory (DLA-2330-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.0576EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2020/07/03 12:0 a.m.43 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-1717)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.5AI score0.06889EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2020/06/02 12:0 a.m.185 views

EulerOS 2.0 SP5 : ruby (EulerOS-SA-2020-1615)

According to the versions of the ruby packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation...

7.8CVSS7.3AI score0.06811EPSS
Exploits0References3
Rows per page
Query Builder