CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OpenVAS•added 2021/05/03 12:0 a.m.•27 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2021-1845)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS8AI score0.01592EPSS

Tenable Nessus•added 2021/03/10 12:0 a.m.•17 views

EulerOS Virtualization 3.0.2.6 : ruby (EulerOS-SA-2021-1450)

According to the version of the ruby packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, and 2.7.x through 2.7.1. WEBrick, a simple HTTP server bundled wit...

7.5CVSS7.3AI score0.00275EPSS

OpenVAS•added 2021/02/22 12:0 a.m.•12 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2021-1356)

7.5CVSS7.8AI score0.00275EPSS

OpenVAS•added 2020/12/15 12:0 a.m.•16 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-2564)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.00259EPSS

Tenable Nessus•added 2020/11/24 12:0 a.m.•23 views

Photon OS 3.0: Ruby PHSA-2020-3.0-0163

An update of the ruby package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0163. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid143247;...

7.5CVSS7.9AI score0.00275EPSS

OpenVAS•added 2020/11/05 12:0 a.m.•17 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-2460)

6.9CVSS6.8AI score0.00547EPSS

OpenVAS•added 2020/11/04 12:0 a.m.•15 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-2439)

7.5CVSS7.8AI score0.00275EPSS

OpenVAS•added 2020/11/04 12:0 a.m.•21 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-2395)

7.8CVSS7.6AI score0.01152EPSS

OpenVAS•added 2020/10/21 12:0 a.m.•21 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-2219)

8.1CVSS8AI score0.01157EPSS

Exploits3References2

OpenVAS•added 2020/09/29 12:0 a.m.•27 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-2139)

8.1CVSS7AI score0.05892EPSS

OpenVAS•added 2020/09/08 12:0 a.m.•23 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-1955)

7.5CVSS7.3AI score0.05892EPSS

OpenVAS•added 2020/09/04 12:0 a.m.•13 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-1944)

6.9CVSS6.8AI score0.00547EPSS

OpenVAS•added 2020/07/03 12:0 a.m.•42 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-1717)

8.1CVSS7.5AI score0.08946EPSS

Snyk•added 2020/06/17 9:43 a.m.•0 views

Cross-site Scripting (XSS)

Overview sanitize is a Ruby HTML and CSS sanitizer. Affected versions of this package are vulnerable to Cross-site Scripting XSS. When HTML is sanitized using Sanitize's "relaxed" config or a custom config that allows certain elements, some content in a or element may not be sanitized correctly...

9.8CVSS5.4AI score0.00484EPSS

OpenVAS•added 2020/05/29 12:0 a.m.•29 views

Fedora: Security Advisory for ruby (FEDORA-2020-a95706b117)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7AI score0.05892EPSS

OpenVAS•added 2020/05/26 12:0 a.m.•38 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2020-1590)

7.5CVSS7.1AI score0.05892EPSS

Snyk•added 2020/04/17 12:0 a.m.•0 views

Malicious Package

Overview assetspublisher-for-hanami is a malicious package. Affected versions of this package were found to be a Malicious Package, as it utilised typosquatting to run Malicious 3rd party scripts. It replaced genuine packages using an and replaced it with - and vice versa Remediation Avoid using...

8CVSS5.5AI score