Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-46727 |
|
Vulnerability in ruby (CVE-2026-46727)
vulnerability in ruby (CVE-2026-46727). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `4.0.5` or later.
|
| CVE-2026-42256 |
|
Vulnerability in net-imap (CVE-2026-42256)
vulnerability in net-imap (CVE-2026-42256). Risk of unauthorized operations or information disclosure. Exploitable via ``Timeout``. Mitigation: upgrade to `0.4.24` or later.
|
| CVE-2026-42257 |
|
Command Injection in net-imap (CVE-2026-42257)
command injection in net-imap (CVE-2026-42257). Successful exploitation can lead to full system takeover. Exploitable via ``CRLF``. Mitigation: upgrade to `0.4.24` or later.
|
| CVE-2026-42258 |
|
Command Injection in net-imap (CVE-2026-42258)
command injection in net-imap (CVE-2026-42258). Data can be tampered with by attackers. Exploitable via ``flag``. Mitigation: upgrade to `0.4.24` or later.
|
| CVE-2026-42246 |
|
Vulnerability in net-imap (CVE-2026-42246)
vulnerability in net-imap (CVE-2026-42246). Confidential information can be exposed externally. Exploitable via ``STARTTLS``. Mitigation: upgrade to `0.3.10` or later.
|
| CVE-2026-27820 |
|
Vulnerability in zlib (CVE-2026-27820)
vulnerability in zlib (CVE-2026-27820). Successful exploitation can lead to full system takeover. Exploitable via ``zstream_buffer_ungets``. Mitigation: upgrade to `3.0.1` or later.
|
| CVE-2026-33210 |
|
Vulnerability in dos (CVE-2026-33210)
vulnerability in dos (CVE-2026-33210). Confidential information can be exposed externally.
|
| CVE-2017-17790 |
|
Vulnerability in ruby-lang (CVE-2017-17790)
vulnerability in ruby-lang (CVE-2017-17790). Successful exploitation can lead to full system takeover.
|
| CVE-2017-17405 |
|
OS Command Injection in ruby-lang (CVE-2017-17405)
OS command injection in ruby-lang (CVE-2017-17405). Successful exploitation can lead to full system takeover.
|
| CVE-2017-10784 |
|
Authentication Bypass in ruby-lang (CVE-2017-10784)
authentication bypass in ruby-lang (CVE-2017-10784). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14033 |
|
Buffer Overflow in dos (CVE-2017-14033)
vulnerability in dos (CVE-2017-14033). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-0898 |
|
Vulnerability in ruby-lang (CVE-2017-0898)
vulnerability in ruby-lang (CVE-2017-0898). Confidential information can be exposed externally.
|
| CVE-2014-6438 |
|
Vulnerability in dos (CVE-2014-6438)
vulnerability in dos (CVE-2014-6438). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14064 |
|
Buffer Overflow in c (CVE-2017-14064)
vulnerability in c (CVE-2017-14064). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11465 |
|
Out-of-Bounds Read in dos (CVE-2017-11465)
vulnerability in dos (CVE-2017-11465). Successful exploitation can lead to full system takeover.
|
| CVE-2015-9096 |
|
Vulnerability in ruby-lang (CVE-2015-9096)
vulnerability in ruby-lang (CVE-2015-9096). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9225 |
|
Out-of-Bounds Write in oniguruma-project (CVE-2017-9225)
out-of-bounds write in oniguruma-project (CVE-2017-9225). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9229 |
|
Vulnerability in oniguruma-project (CVE-2017-9229)
vulnerability in oniguruma-project (CVE-2017-9229). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-6181 |
|
Vulnerability in c (CVE-2017-6181)
vulnerability in c (CVE-2017-6181). Risk of unauthorized operations or information disclosure.
|
| CVE-2009-5147 |
|
Vulnerability in ruby-lang (CVE-2009-5147)
vulnerability in ruby-lang (CVE-2009-5147). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7798 |
|
Vulnerability in ruby-lang (CVE-2016-7798)
vulnerability in ruby-lang (CVE-2016-7798). Confidential information can be exposed externally.
|