Lucene search
K

25 matches found

UbuntuCve
UbuntuCve
added 2020/05/04 3:15 p.m.26 views

CVE-2020-10933

An issue was discovered in Ruby 2.5.x through 2.5.7, 2.6.x through 2.6.5, and 2.7.0. If a victim calls BasicSocketreadnonblockrequestedsize, buffer, exception: false, the method resizes the buffer to fit the requested size, but no data is copied. Thus, the buffer string provides the previous valu...

5.3CVSS6.8AI score0.02564EPSS
Exploits1References4
Prion
Prion
added 2020/04/28 9:15 p.m.26 views

Design/Logic Flaw

The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulnerability. This is quite similar to CVE-2013-0269, but does not rely on poor garbage-collection behavior within Ruby. Specifically, use of JSON parsi...

5CVSS7.4AI score0.13911EPSS
Exploits0References19Affected Software5
AlpineLinux
AlpineLinux
added 2020/04/28 8:58 p.m.63 views

CVE-2020-10663

The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulnerability. This is quite similar to CVE-2013-0269, but does not rely on poor garbage-collection behavior within Ruby. Specifically, use of JSON parsi...

7.5CVSS7.1AI score0.06811EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2020/03/31 12:0 a.m.10 views

PT-2020-2439

Name of the Vulnerable Software and Affected Versions Ruby versions 2.5.x through 2.5.7 Ruby versions 2.6.x through 2.6.5 Ruby version 2.7.0 Description An issue in Ruby may expose possibly sensitive data from the interpreter. This occurs when the BasicSocketread nonblock method is called with th...

9.8CVSS7.9AI score0.29726EPSS
Exploits9References133
Positive Technologies
Positive Technologies
added 2016/10/03 12:0 a.m.9 views

PT-2019-4673 · Puma +9 · Puma +10

Name of the Vulnerable Software and Affected Versions: Ruby versions prior to 2.4.8 Ruby versions 2.5.x through 2.5.6 Ruby versions 2.6.x through 2.6.4 Puma versions prior to 3.12.3 Puma versions prior to 4.3.2 Description: The issue is related to incorrect handling of special elements in the...

9.8CVSS6.6AI score0.73927EPSS
Exploits42References407
Rows per page
Query Builder