CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

783 matches found

Positive Technologies•added 2024/12/29 12:0 a.m.•1 views

PT-2024-40649 · Git +1 · Mruby

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type of "Use-of-uninitialized-value". The crash state involves several functions: mark context, incremental gc, and mrb...

6.9AI score

Exploits0References2

Positive Technologies•added 2024/09/24 12:0 a.m.•1 views

PT-2024-40579 · Git +1 · Mruby

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash, specifically a Segv on an unknown address. The crash state includes functions such as udiv, mrb bint mod, and mrb vm exe...

6.9AI score

Exploits0References2

Positive Technologies•added 2024/02/15 12:0 a.m.•1 views

PT-2024-40564 · Git +1 · Mruby

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. Technical details about the crash include the functions mrb memsearch, str convert range, and...

6.8AI score

Exploits0References2

Positive Technologies•added 2024/02/11 12:0 a.m.•1 views

PT-2024-40882 · Git +1 · Mruby

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read crash. Technical details about the crash include the functions mrb memsearch, str convert range, and...

6.8AI score

Exploits0References2

Positive Technologies•added 2024/02/01 12:0 a.m.•1 views

PT-2024-40817 · Git +1 · Mruby

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read crash. Technical details about the crash include the functions mrb memsearch, str convert range, and...

6.8AI score

Exploits0References2

Positive Technologies•added 2024/01/22 12:0 a.m.•1 views

PT-2024-40704 · Git +1 · Mruby

6.8AI score

Exploits0References2

Positive Technologies•added 2023/05/09 12:0 a.m.•1 views

PT-2023-35820 · Git +1 · Mruby

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-use-after-free READ 1 crash type. The crash state involves several function calls, including mrb str hash m, mrb funcall...

6.9AI score

Exploits0References2

Positive Technologies•added 2023/04/06 12:0 a.m.•1 views

PT-2023-35757 · Git +1 · Mruby

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-use-after-free READ 4 crash type. The crash state involves several function calls, including mrb gc mark, mrb gc mark iv,...

6.9AI score

Exploits0References2

Positive Technologies•added 2023/03/16 12:0 a.m.•1 views

PT-2023-35700 · Git +1 · Mruby

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type of UNKNOWN READ. The crash state involves several function calls, including mrb obj iv get, class name str, and mrb...

6.9AI score

Exploits0References2

Positive Technologies•added 2023/02/28 12:0 a.m.•1 views

PT-2023-35600 · Git +1 · Mruby

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-use-after-free READ 4 crash type. The crash state involves several function calls, including mrb gc mark, mrb gc mark iv,...

6.9AI score

Exploits0References2

Microsoft CVE•added 2023/02/27 8:0 a.m.•1 views

An Untrusted Pointer Dereference was discovered in function mrb_vm_exec in mruby before 3.1.0-rc. The vulnerability causes a segmentation fault and application crash.

...

7.5CVSS7.5AI score0.00384EPSS

Exploits1

SUSE CVE•added 2023/02/16 3:5 a.m.•1 views

SUSE CVE-2021-46023

An Untrusted Pointer Dereference was discovered in function mrbvmexec in mruby before 3.1.0-rc. The vulnerability causes a segmentation fault and application crash...

7.5CVSS7AI score0.00384EPSS

Exploits1References3

Veracode•added 2023/02/15 3:24 p.m.•13 views

Denial Of Service (DoS)

mruby is vulnerable to Denial Of Service DoS. The vulnerability exists in mrbvmexec due to a null pointer dereference causing a segment fault resulting in an application crash...

7.5CVSS2.8AI score0.00384EPSS

Exploits1References4Affected Software2

SUSE CVE•added 2023/02/15 5:2 a.m.•0 views

SUSE CVE-2016-4864

H2O versions 2.0.3 and earlier and 2.1.0-beta2 and earlier allows remote attackers to cause a denial-of-service DoS via format string specifiers in a template file via fastcgi, mruby, proxy, redirect or reproxy...

7.5CVSS6.9AI score0.01598EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 3:50 a.m.•1 views

SUSE CVE-2020-36401

mruby 2.1.2 has a double free in mrbdefaultallocf called from mrbfree and objfree...

7.8CVSS7.8AI score0.00242EPSS

Exploits1References3

SUSE CVE•added 2023/02/15 3:47 a.m.•1 views

SUSE CVE-2021-4110

mruby is vulnerable to NULL Pointer Dereference...

7.5CVSS8.6AI score0.00426EPSS

Exploits1References3