Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Tag: ruby-lang Clear
ID Title
CVE-2026-46727 Vulnerability in ruby (CVE-2026-46727)
vulnerability in ruby (CVE-2026-46727). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `4.0.5` or later.
CVE-2026-42256 Vulnerability in net-imap (CVE-2026-42256)
vulnerability in net-imap (CVE-2026-42256). Risk of unauthorized operations or information disclosure. Exploitable via ``Timeout``. Mitigation: upgrade to `0.4.24` or later.
CVE-2026-42257 Command Injection in net-imap (CVE-2026-42257)
command injection in net-imap (CVE-2026-42257). Successful exploitation can lead to full system takeover. Exploitable via ``CRLF``. Mitigation: upgrade to `0.4.24` or later.
CVE-2026-42258 Command Injection in net-imap (CVE-2026-42258)
command injection in net-imap (CVE-2026-42258). Data can be tampered with by attackers. Exploitable via ``flag``. Mitigation: upgrade to `0.4.24` or later.
CVE-2026-42246 Vulnerability in net-imap (CVE-2026-42246)
vulnerability in net-imap (CVE-2026-42246). Confidential information can be exposed externally. Exploitable via ``STARTTLS``. Mitigation: upgrade to `0.3.10` or later.
CVE-2026-27820 Vulnerability in zlib (CVE-2026-27820)
vulnerability in zlib (CVE-2026-27820). Successful exploitation can lead to full system takeover. Exploitable via ``zstream_buffer_ungets``. Mitigation: upgrade to `3.0.1` or later.
CVE-2026-33210 Vulnerability in dos (CVE-2026-33210)
vulnerability in dos (CVE-2026-33210). Confidential information can be exposed externally.
CVE-2017-17790 Vulnerability in ruby-lang (CVE-2017-17790)
vulnerability in ruby-lang (CVE-2017-17790). Successful exploitation can lead to full system takeover.
CVE-2017-17405 OS Command Injection in ruby-lang (CVE-2017-17405)
OS command injection in ruby-lang (CVE-2017-17405). Successful exploitation can lead to full system takeover.
CVE-2017-10784 Authentication Bypass in ruby-lang (CVE-2017-10784)
authentication bypass in ruby-lang (CVE-2017-10784). Successful exploitation can lead to full system takeover.
CVE-2017-14033 Buffer Overflow in dos (CVE-2017-14033)
vulnerability in dos (CVE-2017-14033). Risk of unauthorized operations or information disclosure.
CVE-2017-0898 Vulnerability in ruby-lang (CVE-2017-0898)
vulnerability in ruby-lang (CVE-2017-0898). Confidential information can be exposed externally.
CVE-2014-6438 Vulnerability in dos (CVE-2014-6438)
vulnerability in dos (CVE-2014-6438). Risk of unauthorized operations or information disclosure.
CVE-2017-14064 Buffer Overflow in c (CVE-2017-14064)
vulnerability in c (CVE-2017-14064). Successful exploitation can lead to full system takeover.
CVE-2017-11465 Out-of-Bounds Read in dos (CVE-2017-11465)
vulnerability in dos (CVE-2017-11465). Successful exploitation can lead to full system takeover.
CVE-2015-9096 Vulnerability in ruby-lang (CVE-2015-9096)
vulnerability in ruby-lang (CVE-2015-9096). Risk of unauthorized operations or information disclosure.
CVE-2017-9225 Out-of-Bounds Write in oniguruma-project (CVE-2017-9225)
out-of-bounds write in oniguruma-project (CVE-2017-9225). Successful exploitation can lead to full system takeover.
CVE-2017-9229 Vulnerability in oniguruma-project (CVE-2017-9229)
vulnerability in oniguruma-project (CVE-2017-9229). Risk of unauthorized operations or information disclosure.
CVE-2017-6181 Vulnerability in c (CVE-2017-6181)
vulnerability in c (CVE-2017-6181). Risk of unauthorized operations or information disclosure.
CVE-2009-5147 Vulnerability in ruby-lang (CVE-2009-5147)
vulnerability in ruby-lang (CVE-2009-5147). Risk of unauthorized operations or information disclosure.
CVE-2016-7798 Vulnerability in ruby-lang (CVE-2016-7798)
vulnerability in ruby-lang (CVE-2016-7798). Confidential information can be exposed externally.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →