Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

207 matches found

Tenable Nessus
Tenable Nessusadded 2020/10/05 12:0 a.m.22 views

Debian DLA-2392-1 : jruby security update

A potential HTTP request smuggling vulnerability in WEBrick was reported. WEBrick bundled along with jruby was too tolerant against an invalid Transfer-Encoding header. This may lead to inconsistent interpretation between WEBrick and some HTTP proxy servers, which may allow the attacker to...

7.5CVSS7AI score0.00275EPSS
Exploits0References4
OpenVAS
OpenVASadded 2020/10/02 12:0 a.m.25 views

Debian: Security Advisory (DLA-2392-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.00275EPSS
Exploits0References4
Debian
Debianadded 2020/10/01 3:52 p.m.37 views

[SECURITY] [DLA 2392-1] jruby security update

----------------------------------------------------------------------- Debian LTS Advisory DLA-2392-1 [email protected] https://www.debian.org/lts/security/ Utkarsh Gupta October 01, 2020 https://wiki.debian.org/LTS -...

7.5CVSS7.7AI score0.00275EPSS
Exploits0
OSV
OSVadded 2020/10/01 12:0 a.m.140 views

DLA-2392-1 jruby - security update

Bulletin has no description...

7.5CVSS7.8AI score0.00275EPSS
Exploits0
OpenVAS
OpenVASadded 2020/09/26 12:0 a.m.25 views

Fedora: Security Advisory for rubygem-puma (FEDORA-2020-fe354f24e8)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS8.8AI score0.01782EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2020/08/18 12:0 a.m.119 views

Debian DLA-2330-1 : jruby security update

Several vulnerabilities were fixed in JRuby, a 100% pure-Java implementation of Ruby. CVE-2017-17742 CVE-2019-16254 HTTP Response Splitting attacks in the HTTP server of WEBrick. CVE-2019-16201 Regular Expression Denial of Service vulnerability of WEBrick's Digest access authentication...

8.8CVSS6.9AI score0.06309EPSS
Exploits2References13
OpenVAS
OpenVASadded 2020/08/17 12:0 a.m.27 views

Debian: Security Advisory (DLA-2330-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.06309EPSS
Exploits2References4
Debian
Debianadded 2020/08/16 1:13 p.m.152 views

[SECURITY] [DLA 2330-1] jruby security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2330-1 [email protected] https://www.debian.org/lts/security/ August 16, 2020 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package...

8.8CVSS8.9AI score0.06309EPSS
Exploits2
OSV
OSVadded 2020/08/16 12:0 a.m.130 views

DLA-2330-1 jruby - security update

Bulletin has no description...

8.8CVSS7AI score0.06309EPSS
Exploits2
Tenable Nessus
Tenable Nessusadded 2019/12/12 12:0 a.m.75 views

Debian DLA-2027-1 : jruby security update

Several security vulnerabilities were found in Ruby that also affected Debian's JRuby package, a pure-Java implementation of Ruby. Attackers were able to call arbitrary Ruby methods, cause a denial of service or inject input into HTTP response headers when using the WEBrick module. For Debian 8...

8.1CVSS7.1AI score0.01157EPSS
Exploits1References6
OpenVAS
OpenVASadded 2019/12/11 12:0 a.m.158 views

Debian: Security Advisory (DLA-2027-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.2AI score0.01157EPSS
Exploits1References3
Debian
Debianadded 2019/12/10 12:43 p.m.174 views

[SECURITY] [DLA 2027-1] jruby security update

Package : jruby Version : 1.5.6-9+deb8u2 CVE ID : CVE-2017-17742 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255 Several security vulnerabilities were found in Ruby that also affected Debians JRuby package, a pure-Java implementation of Ruby. Attackers were able to call arbitrary Ruby methods, cause...

8.1CVSS8.4AI score0.01157EPSS
Exploits1
OSV
OSVadded 2019/12/10 12:0 a.m.176 views

DLA-2027-1 jruby - security update

Bulletin has no description...

8.1CVSS6.9AI score0.01157EPSS
Exploits1
UbuntuCve
UbuntuCveadded 2019/11/05 3:15 p.m.27 views

CVE-2013-6460

Nokogiri gem 1.5.x has Denial of Service via infinite loop when parsing XML documents...

6.5CVSS6.6AI score0.02521EPSS
Exploits1References2
UbuntuCve
UbuntuCveadded 2019/11/05 3:15 p.m.25 views

CVE-2013-6461

Nokogiri gem 1.5.x and 1.6.x has DoS while parsing XML entities by failing to apply limits...

6.5CVSS6.6AI score0.02046EPSS
Exploits1References2
OpenVAS
OpenVASadded 2019/05/21 12:0 a.m.58 views

Debian: Security Advisory (DLA-1796-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.6AI score0.0176EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2019/05/21 12:0 a.m.32 views

Debian DLA-1796-1 : jruby security update

Multiple vulnerabilities have been discovered in jruby, Java implementation of the Ruby programming language. CVE-2018-1000074 Deserialization of Untrusted Data vulnerability in owner command that can result in code execution. This attack appear to be exploitable via victim must run the gem owner...

9.8CVSS7AI score0.0176EPSS
Exploits0References12
Debian
Debianadded 2019/05/20 11:6 a.m.111 views

[SECURITY] [DLA 1796-1] jruby security update

Package : jruby Version : 1.5.6-9+deb8u1 CVE ID : CVE-2018-1000074 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000077 CVE-2018-1000078 CVE-2019-8321 CVE-2019-8322 CVE-2019-8323 CVE-2019-8324 CVE-2019-8325 Debian Bug : 895778 925987 Multiple vulnerabilities have been discovered in jruby, Java...

9.8CVSS9.2AI score0.0176EPSS
Exploits0
OSV
OSVadded 2019/05/20 12:0 a.m.38 views

DLA-1796-1 jruby - security update

Bulletin has no description...

9.8CVSS7.4AI score0.0176EPSS
Exploits0
UbuntuCve
UbuntuCveadded 2019/03/27 12:0 a.m.19 views

CVE-2019-8321

An issue was discovered in RubyGems 2.6 and later through 3.0.2. Since Gem::UserInteractionverbose calls say without escaping, escape sequence injection is possible...

7.5CVSS6.8AI score0.00326EPSS
Exploits0References6
Rows per page
Query Builder