Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.3 views

Astra Linux - уязвимость в ruby2.5

In the CGI gem before version 0.4.2 for Ruby, there is a Regular Expression Denial of Service ReDoS vulnerability in the UtilescapeElement method...

7.5CVSS6.6AI score0.00246EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2025/05/06 2:33 a.m.1 views

CGI: ReDoS in CGI::Util#escapeElement

A flaw was found in Ruby's CGI gem. The CGI::UtilescapeElement method is vulnerable to Regular expression Denial of Service ReDoS, allowing a specially crafted input to cause a high CPU consumption...

7.5CVSS5.7AI score0.00246EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2025/04/23 10:34 a.m.1 views

CGI: ReDoS in CGI::Util#escapeElement

A flaw was found in Ruby's CGI gem. The CGI::UtilescapeElement method is vulnerable to Regular expression Denial of Service ReDoS, allowing a specially crafted input to cause a high CPU consumption...

7.5CVSS5.7AI score0.00246EPSS
Exploits0References5
Microsoft CVE
Microsoft CVEadded 2025/03/19 7:0 a.m.1 views

In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method.

...

7.5CVSS7.2AI score0.00246EPSS
Exploits0
Hacker One
Hacker Oneadded 2025/03/05 7:40 p.m.4 views

Internet Bug Bounty: [CVE-2025-27220] ReDoS in CGI::Util#escapeElement

The cgi gem contains a vulnerability in the CGI::UtilescapeElement method that is susceptible to Regular Expression Denial of Service ReDoS. This vulnerability has been assigned the CVE identifier CVE-2025-27220. Users are advised to upgrade the cgi gem to address this issue...

7.5CVSS6.5AI score0.00246EPSS
Exploits0
OSV
OSVadded 2025/03/04 12:15 a.m.3 views

AZL-57791 CVE-2025-27220 affecting package ruby for versions less than 3.1.4-9

In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service ReDoS vulnerability exists in the UtilescapeElement method...

7.5CVSS6.9AI score0.00246EPSS
Exploits0References1
OSV
OSVadded 2025/03/04 12:15 a.m.9 views

CVE-2025-27220

In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service ReDoS vulnerability exists in the UtilescapeElement method...

7.5CVSS4AI score0.00246EPSS
Exploits0References3
OSV
OSVadded 2025/03/04 12:15 a.m.1 views

UBUNTU-CVE-2025-27220

In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service ReDoS vulnerability exists in the UtilescapeElement method...

7.5CVSS6.6AI score0.00246EPSS
Exploits0References6
CNNVD
CNNVDadded 2025/03/04 12:0 a.m.1 views

Ruby 安全漏洞

Ruby is a cross-platform, object-oriented, dynamically typed programming language from the individual developer Yukihiro Matsumoto. A security vulnerability exists in Ruby versions prior to 0.4.2, which stems from a regular expression denial of service in the UtilescapeElement method...

7.5CVSS6.4AI score0.00246EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2025/03/03 12:0 a.m.5 views

CVE-2025-27220

In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service ReDoS vulnerability exists in the UtilescapeElement method...

7.5CVSS5.8AI score0.00246EPSS
Exploits0
Rows per page
Query Builder