Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

31 matches found

Tenable Nessus
Tenable Nessusadded 2025/03/04 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2016-0772

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The smtplib library in CPython aka Python before 2.7.12, 3.x before 3.4.5, and 3.5.x before 3.5.2 does not return an error when StartTLS fails, which might allo...

6.5CVSS6.9AI score0.14524EPSS
Exploits3References2
Tenable Nessus
Tenable Nessusadded 2023/05/01 12:0 a.m.127 views

Debian dla-3408 : jruby - security update

The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3408 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3408-1 [email protected]...

8.1CVSS7.8AI score0.0576EPSS
Exploits3References20
OpenVAS
OpenVASadded 2023/03/08 12:0 a.m.27 views

Debian: Security Advisory (DLA-522-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.3AI score0.25671EPSS
Exploits7References3
Tenable Nessus
Tenable Nessusadded 2022/03/01 12:0 a.m.29 views

Oracle Linux 8 : ruby:2.5 (ELSA-2022-0672)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-0672 advisory. - Properly fix command injection vulnerability in Rdoc. Related: CVE-2021-31799 - Fix command injection vulnerability in RDoc. Resolves: CVE-2021-31799...

7.4CVSS7.1AI score0.0305EPSS
Exploits2References4
Tenable Nessus
Tenable Nessusadded 2022/02/13 12:0 a.m.45 views

EulerOS Virtualization 3.0.6.0 : ruby (EulerOS-SA-2022-1093)

According to the versions of the ruby packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and...

7.4CVSS7.5AI score0.0305EPSS
Exploits2References4
Tenable Nessus
Tenable Nessusadded 2022/02/12 12:0 a.m.37 views

EulerOS Virtualization 3.0.6.6 : ruby (EulerOS-SA-2022-1144)

According to the versions of the ruby packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and...

7.4CVSS7.4AI score0.02909EPSS
Exploits1References3
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2016-0230)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.5AI score0.25671EPSS
Exploits7References9
OpenVAS
OpenVASadded 2021/12/31 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2021-2866)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.05061EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2021/12/02 12:0 a.m.36 views

SUSE SLED15: libruby2_5-2_5 / ruby2.5 / ruby2.5-devel / ruby2.5-devel-extra / etc (SUSE-SU-2021:3838-1)

The remote SUSE Linux SLED15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3838-1 advisory. - CVE-2021-31799: Fixed Command injection vulnerability in RDoc bsc1190375. - CVE-2021-31810: Fixed trusting FTP PASV...

7.4CVSS6.7AI score0.0305EPSS
Exploits2References10
OpenVAS
OpenVASadded 2021/10/26 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2021-2614)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS7.7AI score0.02909EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2021/10/25 12:0 a.m.25 views

EulerOS 2.0 SP3 : ruby (EulerOS-SA-2021-2614)

According to the versions of the ruby packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. Net::IMAP does not raise an exception when StartTLS fai...

7.4CVSS7.1AI score0.02909EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2021/10/13 12:0 a.m.42 views

Debian DLA-2780-1 : ruby2.3 - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2780 advisory. Multiple vulnerabilites in ruby2.3, interpreter of object-oriented scripting language Ruby, were discovered. CVE-2021-31799 In RDoc 3.11 through 6.x before 6.3.1, ...

7.4CVSS7.7AI score0.0305EPSS
Exploits2References10
Tenable Nessus
Tenable Nessusadded 2021/09/24 12:0 a.m.34 views

EulerOS 2.0 SP8 : ruby (EulerOS-SA-2021-2486)

According to the versions of the ruby packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby through 3.0.1, it is possible to execute arbitrary code via | and tags in a...

7.4CVSS7.5AI score0.02909EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2021/08/06 12:0 a.m.46 views

Oracle Linux 8 : ruby:2.7 (ELSA-2021-3020)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-3020 advisory. ruby 2.7.4-137 - Upgrade to Ruby 2.7.4. - Fix command injection vulnerability in RDoc. Resolves: rhbz1986768 - Fix FTP PASV command response can cause...

9.3CVSS7.4AI score0.06307EPSS
Exploits3References5
NVD
NVDadded 2021/08/01 7:15 p.m.22 views

CVE-2021-32066

An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. Net::IMAP does not raise an exception when StartTLS fails with an an unknown response, which might allow man-in-the-middle attackers to bypass the TLS protections by leveraging a network position between th...

7.4CVSS0.02909EPSS
Exploits1References8
OSV
OSVadded 2021/08/01 7:15 p.m.27 views

CVE-2021-32066

An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. Net::IMAP does not raise an exception when StartTLS fails with an an unknown response, which might allow man-in-the-middle attackers to bypass the TLS protections by leveraging a network position between th...

7.4CVSS6.7AI score
Exploits0References8
Prion
Prionadded 2021/08/01 7:15 p.m.56 views

Code injection

An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. Net::IMAP does not raise an exception when StartTLS fails with an an unknown response, which might allow man-in-the-middle attackers to bypass the TLS protections by leveraging a network position between th...

5.8CVSS7.1AI score0.02909EPSS
Exploits1References8Affected Software2
AlpineLinux
AlpineLinuxadded 2021/08/01 12:0 a.m.37 views

CVE-2021-32066

An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. Net::IMAP does not raise an exception when StartTLS fails with an an unknown response, which might allow man-in-the-middle attackers to bypass the TLS protections by leveraging a network position between th...

7.4CVSS7.6AI score0.02909EPSS
Exploits1
ArchLinux
ArchLinuxadded 2021/07/14 12:0 a.m.222 views

[ASA-202107-25] ruby2.6: multiple issues

Arch Linux Security Advisory ASA-202107-25 ========================================== Severity: High Date : 2021-07-14 CVE-ID : CVE-2021-31799 CVE-2021-31810 CVE-2021-32066 Package : ruby2.6 Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-2140 Summary ======= The...

7.4CVSS1.2AI score0.0305EPSS
Exploits2References14
OpenVAS
OpenVASadded 2021/04/19 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2016:2653-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.3AI score0.25671EPSS
Exploits7References11
Rows per page
Query Builder