Linux Distros Unpatched Vulnerability : CVE-2020-6838

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In mruby 2.1.0, there is a use-after-free in hashvaluesat in mrbgems/mruby-hash-ext/src/hash-ext.c. CVE-2020-6838 Note that Nessus relies on the presence of the...

Linux Distros Unpatched Vulnerability : CVE-2018-12248

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in mruby 1.4.1. There is a heap-based buffer over-read associated with OPENTER because mrbgems/mruby-fiber/src/fiber.c does not extend t...

Linux Distros Unpatched Vulnerability : CVE-2022-1276

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out-of-bounds Read in mrbgetargs in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited. CVE-2022-1276 Note that...

Linux Distros Unpatched Vulnerability : CVE-2022-0630

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out-of-bounds Read in Homebrew mruby prior to 3.2. CVE-2022-0630 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL...

Linux Distros Unpatched Vulnerability : CVE-2020-6839

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In mruby 2.1.0, there is a stack-based buffer overflow in mrbstrlentodbl in string.c. CVE-2020-6839 Note that Nessus relies on the presence of the package as...

MAL-2025-26829 Malicious code in mruby_engine (npm)

The package mrubyengine was found to contain malicious code...

Malicious code in mruby_engine (npm)

The package mrubyengine was found to contain malicious code...

SUSE CVE-2025-7207

A vulnerability, which was classified as problematic, was found in mruby up to 3.4.0-rc2. Affected is the function scopenew of the file mrbgems/mruby-compiler/core/codegen.c of the component nregs Handler. The manipulation leads to heap-based buffer overflow. An attack has to be approached locall...

CVE-2025-7207

A vulnerability, which was classified as problematic, was found in mruby up to 3.4.0-rc2. Affected is the function scopenew of the file mrbgems/mruby-compiler/core/codegen.c of the component nregs Handler. The manipulation leads to heap-based buffer overflow. An attack has to be approached locall...

DEBIAN-CVE-2025-7207

A vulnerability, which was classified as problematic, was found in mruby up to 3.4.0-rc2. Affected is the function scopenew of the file mrbgems/mruby-compiler/core/codegen.c of the component nregs Handler. The manipulation leads to heap-based buffer overflow. An attack has to be approached locall...

CVE-2025-7207

A vulnerability, which was classified as problematic, was found in mruby up to 3.4.0-rc2. Affected is the function scopenew of the file mrbgems/mruby-compiler/core/codegen.c of the component nregs Handler. The manipulation leads to heap-based buffer overflow. An attack has to be approached locall...

UBUNTU-CVE-2025-7207

A vulnerability, which was classified as problematic, was found in mruby up to 3.4.0-rc2. Affected is the function scopenew of the file mrbgems/mruby-compiler/core/codegen.c of the component nregs Handler. The manipulation leads to heap-based buffer overflow. An attack has to be approached locall...

CVE-2025-7207

Summary (CVE-2025-7207): A heap-based buffer overflow affects mruby up to 3.4.0-rc2, specifically the function scope_new in file mrbgems/mruby-compiler/core/codegen.c (component nregs Handler). The vulnerability can be triggered locally; an attack requires local access, and the exploit has been d...

CVE-2025-7207 mruby nregs codegen.c scope_new heap-based overflow

A vulnerability, which was classified as problematic, was found in mruby up to 3.4.0-rc2. Affected is the function scopenew of the file mrbgems/mruby-compiler/core/codegen.c of the component nregs Handler. The manipulation leads to heap-based buffer overflow. An attack has to be approached locall...

CVE-2025-7207 mruby nregs codegen.c scope_new heap-based overflow

A vulnerability, which was classified as problematic, was found in mruby up to 3.4.0-rc2. Affected is the function scopenew of the file mrbgems/mruby-compiler/core/codegen.c of the component nregs Handler. The manipulation leads to heap-based buffer overflow. An attack has to be approached locall...

CVE-2025-7207

A vulnerability, which was classified as problematic, was found in mruby up to 3.4.0-rc2. Affected is the function scopenew of the file mrbgems/mruby-compiler/core/codegen.c of the component nregs Handler. The manipulation leads to heap-based buffer overflow. An attack has to be approached locall...

PT-2025-28807 · Mruby +1 · Mruby +1

Name of the Vulnerable Software and Affected Versions: mruby versions up to 3.4.0-rc2 Description: A heap-based buffer overflow issue was found in the function scope new of the file mrbgems/mruby-compiler/core/codegen.c of the component nregs Handler. This issue can be exploited locally...

mruby 安全漏洞

mruby is a lightweight implementation of the Ruby language. A security vulnerability exists in mruby 3.4.0-rc2 and earlier versions, which stems from a heap buffer overflow in the scopenew function...

Heap-based buffer overflow vulnerability in mruby 3.4.0

A vulnerability, which was classified as problematic, was found in mruby up to 3.4.0. Affected is the function scopenew of the file mrbgems/mruby-compiler/core/codegen.c of the component nregs Handler. The manipulation leads to heap-based buffer overflow. An attack has to be approached locally. T...

CVE-2022-1286

heap-buffer-overflow in mrbvmexec in mruby/mruby in GitHub repository mruby/mruby prior to 3.2. Possible arbitrary code execution if being exploited...