cve
base
Search
Products
Trending
About
Docs
Pricing
Home
/
Products
/
ruby-lang
/
Ruby-Lang Date
Ruby-Lang Date vulnerabilities
1 known vulnerability affecting
ruby-lang/date
.
Version
All versions
Total CVEs
1
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH
1
Vulnerabilities
Page 1 of 1
CVE-2021-41817
HIGH
CVSS 7.5
fixed in 2.0.1
·
≥ 3.0.0, < 3.0.2
+2 more
2022-01-01
CVE-2021-41817 [HIGH] CWE-1333 CVE-2021-41817: Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service) via a long string. The fixed versions are 3.2.1, 3.1.2, 3.0.2, and 2.0.1.
nvd