Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded yesterday7 views

CVE-2026-47240

Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to 0.6.5 and 0.5.15, several Net::IMAP commands accept a "raw data" argument that is sent verbatim after validation to prevent command injection. However, if a server does not support non-synchronizing...

5.8CVSS0.00193EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2026/05/09 8:16 p.m.7 views

CVE-2026-42257

Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to versions 0.4.24, 0.5.14, and 0.6.4, several Net::IMAP commands accept a raw string argument that is sent to the server without validation or escaping. If this string is derived from user-controlled...

9.8CVSS5.9AI score0.00412EPSS
Exploits0References5
Debian CVE
Debian CVEadded 2025/04/28 4:2 p.m.4 views

CVE-2025-43857

Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to versions 0.5.7, 0.4.20, 0.3.9, and 0.2.5, there is a possibility for denial of service by memory exhaustion when net-imap reads server responses. At any time while the client is connected, a maliciou...

6.5CVSS6.2AI score0.00393EPSS
Exploits0
Wolfi
Wolfiadded 2025/02/10 4:15 p.m.33 views

CVE-2025-25186 vulnerabilities

Vulnerabilities for packages: ruby3.3-net-imap, ruby3.4-rails, ruby3.2-rails, kube-fluentd-operator, ruby3.3-rails, ruby3.2-net-imap, logstash, ruby3.4-net-imap...

6.5CVSS6.7AI score0.00583EPSS
Exploits0
Debian CVE
Debian CVEadded 2025/02/10 3:55 p.m.10 views

CVE-2025-25186

Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Starting in version 0.3.2 and prior to versions 0.3.8, 0.4.19, and 0.5.6, there is a possibility for denial of service by memory exhaustion in net-imap's response parser. At any time while the client is...

6.5CVSS6.6AI score0.00583EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2022/02/12 12:0 a.m.37 views

EulerOS Virtualization 3.0.6.6 : ruby (EulerOS-SA-2022-1144)

According to the versions of the ruby packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and...

7.4CVSS7.4AI score0.02909EPSS
Exploits1References3
OSV
OSVadded 2021/08/01 7:15 p.m.3 views

DEBIAN-CVE-2021-32066

An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. Net::IMAP does not raise an exception when StartTLS fails with an an unknown response, which might allow man-in-the-middle attackers to bypass the TLS protections by leveraging a network position between th...

7.4CVSS6.2AI score0.02909EPSS
Exploits1References1
Rows per page
Query Builder