CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

149 matches found

OSV•added 2026/05/19 12:7 p.m.•2 views

RLSA-2026:18065 Important: ruby security update

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Security Fixes: erb: ERB: Arbitrary code execution via deserialization bypass CVE-2026-41316 For more details about the security issues, including...

8.1CVSS6.2AI score0.00048EPSS

Exploits0References2

Oracle linux•added 2026/05/19 12:0 a.m.•5 views

ruby security update

3.0.7-166 - Fix arbitrary code execution via deserialization bypass in ERB. CVE-2026-41316 Resolves: RHEL-171254...

8.1CVSS6.3AI score0.00048EPSS

Exploits0

OSV•added 2026/05/18 12:0 a.m.•4 views

ALSA-2026:18030 Important: ruby:3.3 security update

8.1CVSS6.2AI score0.00048EPSS

Exploits0References4

Snyk•added 2026/04/24 4:20 a.m.•6 views

Protection Mechanism Failure

Overview Affected versions of this package are vulnerable to Protection Mechanism Failure in the defmodule, defmethod, or defclass methods due to insufficient deserialization guards. An attacker can achieve arbitrary code execution by supplying crafted input to Marshal.load in a Ruby application...

9.2CVSS6.3AI score0.00048EPSS

Exploits0References2

OSV•added 2026/01/03 9:7 a.m.•5 views

RLSA-2025:23141 Moderate: ruby security update

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Security Fixes: resolv: Denial of Service in resolv gem CVE-2025-24294 rexml: REXML denial of service CVE-2025-58767 For more details about the...

6.5CVSS6AI score0.00268EPSS

Exploits0References4

OSV•added 2025/12/23 10:6 a.m.•3 views

RHSA-2025:23927 Red Hat Security Advisory: ruby security update

Bulletin has no description...

8.1CVSS6.9AI score0.00268EPSS

Exploits0References23