Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-22795

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A regular expression based DoS vulnerability in Action Dispatch 6.1.7.1 and 7.0.4.1 related to the If- None-Match header. A specially crafted HTTP If-None-Match...

7.5CVSS6.5AI score0.02278EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.98 views

CVE-2023-22795 affecting package ruby 2.6.10-1

CVE-2023-22795 affecting package ruby 2.6.10-1. This CVE either no longer is or was never applicable...

7.5CVSS7.5AI score0.02278EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.27 views

openSUSE: Security Advisory for rubygem (SUSE-SU-2023:0444-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.02278EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2023/05/25 9:38 a.m.45 views

CVE-2023-22795 affecting package ruby for versions less than 3.1.4-1

CVE-2023-22795 affecting package ruby for versions less than 3.1.4-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS7AI score0.02278EPSS
Exploits0
Debian
Debian
added 2023/03/13 3:6 a.m.174 views

[SECURITY] [DSA 5372-1] rails security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5372-1 [email protected] https://www.debian.org/security/ Aron Xu March 13, 2023 https://www.debian.org/security/faq - -------------------------------------------------------------------------...

9.8CVSS7.8AI score0.04182EPSS
Exploits2
Cvelist
Cvelist
added 2023/02/09 12:0 a.m.28 views

CVE-2023-22795

A regular expression based DoS vulnerability in Action Dispatch 6.1.7.1 and 7.0.4.1 related to the If-None-Match header. A specially crafted HTTP If-None-Match header can cause the regular expression engine to enter a state of catastrophic backtracking, when on a version of Ruby below 3.2.0. This...

7.7AI score0.02278EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/02/01 12:0 a.m.34 views

Fedora 38 : rubygem-actioncable / rubygem-actionmailbox / rubygem-actionmailer / etc (2023-f60cca0686)

The remote Fedora 38 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-f60cca0686 advisory. Upgrade to Ruby on Rails 7.0.4.2. Fixes numerous CVEs: https://rubyonrails.org/2023/1/17/Rails- Versions-6-0-6-1-6-1-7-1-7-0-4-1-have-been-released...

8.8CVSS7.3AI score0.02278EPSS
Exploits2References7
Github Security Blog
Github Security Blog
added 2023/01/18 6:20 p.m.37 views

ReDoS based DoS vulnerability in Action Dispatch

There is a possible regular expression based DoS vulnerability in Action Dispatch related to the If-None-Match header. This vulnerability has been assigned the CVE identifier CVE-2023-22795. Versions Affected: All Not affected: None Fixed Versions: 5.2.8.15 Rails LTS, 6.1.7.1, 7.0.4.1 Impact A...

7.5CVSS7.5AI score0.02278EPSS
Exploits0References10Affected Software1
RubySec
RubySec
added 2023/01/18 12:0 a.m.84 views

ReDoS based DoS vulnerability in Action Dispatch

There is a possible regular expression based DoS vulnerability in Action Dispatch related to the If-None-Match header. This vulnerability has been assigned the CVE identifier CVE-2023-22795. Versions Affected: All Not affected: None Fixed Versions: 6.1.7.1, 7.0.4.1 Impact A specially crafted HTTP...

7.5CVSS7.4AI score0.02278EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder