Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

14178 matches found

Tenable Nessus
Tenable Nessusadded 2025/03/06 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2024-47888

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Action Text brings rich text content and editing to Rails. Starting in version 6.0.0 and prior to versions 6.1.7.9, 7.0.8.5, 7.1.4.1, and 7.2.1.1, there is a...

8.7CVSS6.1AI score0.00991EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/03/06 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2024-47887

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Action Pack is a framework for handling and responding to web requests. Starting in version 4.0.0 and prior to versions 6.1.7.9, 7.0.8.5, 7.1.4.1, and 7.2.1.1,...

8.7CVSS6.1AI score0.01048EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/03/06 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2017-17916

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SQL injection vulnerability in the 'findby' method in Ruby on Rails 5.1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the 'name'...

8.1CVSS8.5AI score0.01519EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/03/06 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2025-27219

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the CGI gem before 0.4.2 for Ruby, the CGI::Cookie.parse method in the CGI library contains a potential Denial of Service DoS vulnerability. The method does...

7.5CVSS6.6AI score0.00784EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/03/06 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2024-47889

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Action Mailer is a framework for designing email service layers. Starting in version 3.0.0 and prior to versions 6.1.7.9, 7.0.8.5, 7.1.4.1, and 7.2.1.1, there i...

8.7CVSS6.1AI score0.00944EPSS
Exploits0References2
OSV
OSVadded 2025/03/06 12:0 a.m.9 views

OPENSUSE-SU-2025:14859-1 ruby3.4-rubygem-rack-2.2-2.2.12-1.1 on GA media

These are all security issues fixed in the ruby3.4-rubygem-rack-2.2-2.2.12-1.1 package on the GA media of openSUSE Tumbleweed...

7.5CVSS9.6AI score0.00699EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/03/06 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2022-3704

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability classified as problematic has been found in Ruby on Rails. This affects an unknown part of the file...

5.4CVSS4.2AI score0.0068EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/03/06 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2017-17919

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SQL injection vulnerability in the 'order' method in Ruby on Rails 5.1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the 'id desc'...

8.1CVSS8.5AI score0.01506EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/03/06 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2017-17920

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SQL injection vulnerability in the 'reorder' method in Ruby on Rails 5.1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the 'name'...

8.1CVSS8.5AI score0.01506EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/03/06 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-41128

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Action Pack is a framework for handling and responding to web requests. Starting in version 3.1.0 and prior to versions 6.1.7.9, 7.0.8.5, 7.1.4.1, and 7.2.1.1,...

8.7CVSS6AI score0.01103EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/03/06 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2024-49761

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - REXML is an XML toolkit for Ruby. The REXML gem before 3.3.9 has a ReDoS vulnerability when it parses an XML that has many digits between & and x...; in a hex...

8.7CVSS7.3AI score0.01429EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/03/06 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2011-3187

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The tos method in actionpack/lib/actiondispatch/middleware/remoteip.rb in Ruby on Rails 3.0.5 does not validate the X-Forwarded-For header in requests from IP...

4.3CVSS5.8AI score0.06661EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-24795

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - yajl-ruby is a C binding to the YAJL JSON parsing and generation library. The 1.x branch and the 2.x branch of yajl contain an integer overflow which leads to...

7.5CVSS7.6AI score0.0342EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2023-28756

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. I...

5.3CVSS7.1AI score0.02452EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2024-45614

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Puma is a Ruby/Rack web server built for parallelism. In affected versions clients could clobber values set by intermediate proxies such as X-Forwarded-For by...

5.4CVSS6.9AI score0.00659EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2023-36617

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A ReDoS issue was discovered in the URI component before 0.12.2 for Ruby. The URI parser mishandles invalid URLs that have specific characters. There is an...

5.3CVSS6.6AI score0.01533EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2022-46648

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ruby-git versions prior to v1.13.0 allows a remote authenticated attacker to execute an arbitrary ruby code by having a user to load a repository containing a...

8CVSS7AI score0.01351EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2021-41817

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS regular expression Denial of Service via a long string. The fixed versions are 3.2.1, 3.1.2, 3.0....

7.5CVSS7AI score0.03222EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2022-47318

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ruby-git versions prior to v1.13.0 allows a remote authenticated attacker to execute an arbitrary ruby code by having a user to load a repository containing a...

8.8CVSS7AI score0.0136EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/03/05 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2023-28755

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A ReDoS issue was discovered in the URI component through 0.12.0 in Ruby through 3.2.1. The URI parser mishandles invalid URLs that have specific characters. It...

5.3CVSS6.8AI score0.02637EPSS
Exploits0References4
Rows per page
Query Builder