cbcvebase.

Ruby-Lang Ruby vulnerabilities

95 known vulnerabilities affecting ruby-lang/ruby.

Total CVEs
95
CISA KEV
0
Public exploits
11
Exploited in wild
1
Severity breakdown
CRITICAL16HIGH35MEDIUM44

Vulnerabilities

Page 4 of 5
CVE-2013-4073P4MEDIUMCVSS 6.8v1.8.6-26v1.8.7+2 more2013-08-18
CVE-2013-4073 [MEDIUM] CVE-2013-4073: The OpenSSL::SSL.verify_certificate_identity function in lib/openssl/ssl.rb in Ruby 1.8 before 1.8.7 The OpenSSL::SSL.verify_certificate_identity function in lib/openssl/ssl.rb in Ruby 1.8 before 1.8.7-p374, 1.9 before 1.9.3-p448, and 2.0 before 2.0.0-p247 does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a craft
nvd
CVE-2015-9096P4MEDIUMCVSS 6.1≤ 2.4.02017-06-12
CVE-2015-9096 [MEDIUM] CWE-93 CVE-2015-9096: Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring.
nvd
CVE-2019-16254P4MEDIUMCVSS 5.3≤ 2.3.0≥ 2.4.0, ≤ 2.4.7+2 more2019-11-26
CVE-2019-16254 [MEDIUM] CWE-74 CVE-2019-16254: Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 allows HTTP Response Splitting. If Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 allows HTTP Response Splitting. If a program using WEBrick inserts untrusted input into the response header, an attacker can exploit it to insert a newline character to split a header, and inject malicious content to deceive clients. NOTE: this issue exists because of an incomplete fix f
nvd
CVE-2014-2734P4MEDIUMCVSS 5.8v2.0v2.0.0+2 more2014-04-24
CVE-2014-2734 [MEDIUM] CWE-399 CVE-2014-2734: The openssl extension in Ruby 2.x does not properly maintain the state of process memory after a fil The openssl extension in Ruby 2.x does not properly maintain the state of process memory after a file is reopened, which allows remote attackers to spoof signatures within the context of a Ruby script that attempts signature verification after performing a certain sequence of filesystem operations. NOTE: this issue has been disputed by the Ruby OpenSS
nvd
CVE-2013-2065P4MEDIUMCVSS 6.4v1.9v1.9.1+4 more2013-11-02
CVE-2013-2065 [MEDIUM] CWE-264 CVE-2013-2065: (1) DL and (2) Fiddle in Ruby 1.9 before 1.9.3 patchlevel 426, and 2.0 before 2.0.0 patchlevel 195, (1) DL and (2) Fiddle in Ruby 1.9 before 1.9.3 patchlevel 426, and 2.0 before 2.0.0 patchlevel 195, do not perform taint checking for native functions, which allows context-dependent attackers to bypass intended $SAFE level restrictions.
nvd
CVE-2008-2376P4HIGHCVSS 7.5v1.8.6.2302008-07-09
CVE-2008-2376 [HIGH] CWE-189 CVE-2008-2376: Integer overflow in the rb_ary_fill function in array.c in Ruby before revision 17756 allows context Integer overflow in the rb_ary_fill function in array.c in Ruby before revision 17756 allows context-dependent attackers to cause a denial of service (crash) or possibly have unspecified other impact via a call to the Array#fill method with a start (aka beg) argument greater than ARY_MAX_SIZE. NOTE: this issue exists because of an incomplete fix for oth
nvd
CVE-2011-0188P4MEDIUMCVSS 6.8≤ 1.9.2-p136v1.9+8 more2011-03-23
CVE-2011-0188 [MEDIUM] CWE-189 CVE-2011-0188: The VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby 1.9.2-p136 and earlier, as u The VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby 1.9.2-p136 and earlier, as used on Apple Mac OS X before 10.6.7 and other platforms, does not properly allocate memory, which allows context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving creation of a large Big
nvd
CVE-2009-0642P4MEDIUMCVSS 6.8v1.8v1.92009-02-20
CVE-2009-0642 [MEDIUM] CWE-287 CVE-2009-0642: ext/openssl/ossl_ocsp.c in Ruby 1.8 and 1.9 does not properly check the return value from the OCSP_b ext/openssl/ossl_ocsp.c in Ruby 1.8 and 1.9 does not properly check the return value from the OCSP_basic_verify function, which might allow remote attackers to successfully present an invalid X.509 certificate, possibly involving a revoked certificate.
nvd
CVE-2010-2489P4HIGHCVSS 7.2v1.9.0-0v1.9.0-1+4 more2010-07-12
CVE-2010-2489 [HIGH] CWE-119 CVE-2010-2489: Buffer overflow in Ruby 1.9.x before 1.9.1-p429 on Windows might allow local users to gain privilege Buffer overflow in Ruby 1.9.x before 1.9.1-p429 on Windows might allow local users to gain privileges via a crafted ARGF.inplace_mode value that is not properly handled when constructing the filenames of the backup files.
nvd
CVE-2014-8080P4MEDIUMCVSS 5.0≤ 1.9.3v1.9.3+4 more2014-11-03
CVE-2014-8080 [MEDIUM] CVE-2014-8080: The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before 2.0.0-p594, and 2.1.x before 2.1.4 al The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before 2.0.0-p594, and 2.1.x before 2.1.4 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document, aka an XML Entity Expansion (XEE) attack.
nvd
CVE-2020-10933P4MEDIUMCVSS 5.3≥ 2.5.0, ≤ 2.5.7≥ 2.6.0, ≤ 2.6.5+1 more2020-05-04
CVE-2020-10933 [MEDIUM] CWE-908 CVE-2020-10933: An issue was discovered in Ruby 2.5.x through 2.5.7, 2.6.x through 2.6.5, and 2.7.0. If a victim cal An issue was discovered in Ruby 2.5.x through 2.5.7, 2.6.x through 2.6.5, and 2.7.0. If a victim calls BasicSocket#read_nonblock(requested_size, buffer, exception: false), the method resizes the buffer to fit the requested size, but no data is copied. Thus, the buffer string provides the previous value of the heap. This may expose possibly sensitive
nvd
CVE-2023-28756P4MEDIUMCVSS 5.3≤ 2.7.72023-03-31
CVE-2023-28756 [MEDIUM] CWE-1333 CVE-2023-28756: A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time par A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2.
nvd
CVE-2008-1891P4MEDIUMCVSS 5.0≤ 1.9.0v1.8.5+1 more2008-04-18
CVE-2008-1891 [MEDIUM] CWE-22 CVE-2008-1891: Directory traversal vulnerability in WEBrick in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8 Directory traversal vulnerability in WEBrick in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2, when using NTFS or FAT filesystems, allows remote attackers to read arbitrary CGI files via a trailing (1) + (plus), (2) %2b (encoded plus), (3) . (dot), (4) %2e (encoded dot), or (5
nvd
CVE-2011-3624P4MEDIUMCVSS 5.3v1.8.7v1.9.22019-11-26
CVE-2011-3624 [MEDIUM] CWE-74 CVE-2011-3624: Various methods in WEBrick::HTTPRequest in Ruby 1.9.2 and 1.8.7 and earlier do not validate the X-Fo Various methods in WEBrick::HTTPRequest in Ruby 1.9.2 and 1.8.7 and earlier do not validate the X-Forwarded-For, X-Forwarded-Host and X-Forwarded-Server headers in requests, which might allow remote attackers to inject arbitrary text into log files or bypass intended address parsing via a crafted header.
nvd
CVE-2013-1821P4MEDIUMCVSS 5.0≤ 1.9.3v1.9+5 more2013-04-09
CVE-2013-1821 [MEDIUM] CWE-20 CVE-2013-1821: lib/rexml/text.rb in the REXML parser in Ruby before 1.9.3-p392 allows remote attackers to cause a d lib/rexml/text.rb in the REXML parser in Ruby before 1.9.3-p392 allows remote attackers to cause a denial of service (memory consumption and crash) via crafted text nodes in an XML document, aka an XML Entity Expansion (XEE) attack.
nvd
CVE-2014-8090P4MEDIUMCVSS 5.0≤ 1.9.3v1.9.3+5 more2014-11-21
CVE-2014-8090 [MEDIUM] CVE-2014-8090: The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x before 2.0.0 patchlevel 598, and 2 The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x before 2.0.0 patchlevel 598, and 2.1.x before 2.1.5 allows remote attackers to cause a denial of service (CPU and memory consumption) a crafted XML document containing an empty string in an entity that is used in a large number of nested entity references, aka an XML Entity Expansion (XEE) atta
nvd
CVE-2014-4975P4MEDIUMCVSS 5.0≤ 1.9.3v2.0+4 more2014-11-15
CVE-2014-4975 [MEDIUM] CWE-119 CVE-2014-4975: Off-by-one error in the encodes function in pack.c in Ruby 1.9.3 and earlier, and 2.x through 2.1.2, Off-by-one error in the encodes function in pack.c in Ruby 1.9.3 and earlier, and 2.x through 2.1.2, when using certain format string specifiers, allows context-dependent attackers to cause a denial of service (segmentation fault) via vectors that trigger a stack-based buffer overflow.
nvd
CVE-2008-3905P4MEDIUMCVSS 5.8≤ 1.8.5≤ 1.8.6+11 more2008-09-04
CVE-2008-3905 [MEDIUM] CVE-2008-3905: resolv.rb in Ruby 1.8.5 and earlier, 1.8.6 before 1.8.6-p287, 1.8.7 before 1.8.7-p72, and 1.9 r18423 resolv.rb in Ruby 1.8.5 and earlier, 1.8.6 before 1.8.6-p287, 1.8.7 before 1.8.7-p72, and 1.9 r18423 and earlier uses sequential transaction IDs and constant source ports for DNS requests, which makes it easier for remote attackers to spoof DNS responses, a different vulnerability than CVE-2008-1447.
nvd
CVE-2012-4466P4MEDIUMCVSS 5.0v1.8.7v1.9.3+2 more2013-04-25
CVE-2012-4466 [MEDIUM] CVE-2012-4466: Ruby 1.8.7 before patchlevel 371, 1.9.3 before patchlevel 286, and 2.0 before revision r37068 allows Ruby 1.8.7 before patchlevel 371, 1.9.3 before patchlevel 286, and 2.0 before revision r37068 allows context-dependent attackers to bypass safe-level restrictions and modify untainted strings via the name_err_mesg_to_str API function, which marks the string as tainted, a different vulnerability than CVE-2011-1005.
nvd
CVE-2020-16255P4MEDIUMCVSS 6.1≥ 0, < 2.5.8-r02021-01-15
CVE-2020-16255 [MEDIUM] CVE-2020-16255: ownCloud (Core) before 10 ownCloud (Core) before 10.5 allows XSS in login page 'forgot password.'
osv
Ruby-Lang Ruby vulnerabilities | cvebase