Where
-Infinity
0

Trending

Last week
Last month
Last year

jruby JRubyJRuby-OpenSSL has hostname verification disabled by default

Risk 25
Severity
5.7
EPSS
0.03%
First published (updated )
CVE-2025-46551

rubygems/cgiLast updated 17 April 2025

Risk 31
Severity
7.5
EPSS
0.17%
First published (updated )
CVE-2025-27219

rubygems/cgiLast updated 17 April 2025

Risk 31
Severity
7.5
EPSS
0.13%
First published (updated )
CVE-2025-27220

Ruby REXMLREXML is an XML toolkit for Ruby. The REXML gem before 3.3.9 has a ReDoS vulnerability when it parse…

Risk 18
Severity
4
First published (updated )
REDHAT-BUG-2322153

rubygems/actionpackRails possible ReDoS vulnerability in Accept header parsing in Action Dispatch

Risk 31
Severity
7.5
EPSS
0.04%
First published (updated )
CVE-2024-26142
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

rubygems/uriInput Validation

Risk 46
Severity
7.5
First published (updated )
CVE-2023-28755

rubygems/cgiLast updated 24 July 2024

Risk 83
Severity
8.8
First published (updated )
CVE-2021-33621

redhat/RubyBuffer Overflow, Input Validation, Race Condition, Use After Free

Risk 46
Severity
7.5
First published (updated )
CVE-2022-28739

Ruby Ruby 3.1Reached end of life

EOL
Mar 31, 2025
First published (updated )
EOL-ruby-3.1

Ruby Ruby 3.1Reached end of life

EOL
Mar 31, 2025
First published (updated )
latest-version-ruby-3.1
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Ruby RubyBuffer Overflow

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2026752

redhat/ruby-dateDate.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service…

Risk 46
Severity
7.5
First published (updated )
CVE-2021-41817

ruby-lang rubyPath Traversal

Risk 43
Severity
7.5
First published (updated )
CVE-2021-28966

redhat/rubyNet::IMAP does not raise an exception when StartTLS fails with an unknown response, which might allo…

Risk 59
Severity
7.4
First published (updated )
CVE-2021-32066

Ruby Ruby 3.0Reached end of life

EOL
Apr 23, 2024
First published (updated )
EOL-ruby-3.0
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Ruby Ruby 3.0Reached end of life

EOL
Apr 23, 2024
First published (updated )
latest-version-ruby-3.0

redhat/rubyInfoleak

Risk 28
Severity
5.3
First published (updated )
CVE-2020-10933

ruby-lang RubyHTTP Response Splitting in Puma

Risk 44
Severity
7.5
First published (updated )
CVE-2020-5247

ruby-lang RubyAn exploitable heap overflow vulnerability exists in the Psych::Emitter start_document function of R…

Risk 86
Severity
9.8
First published (updated )
CVE-2016-2338

Ruby Ruby 2.7Reached end of life

EOL
Mar 31, 2023
First published (updated )
latest-version-ruby-2.7
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Ruby Ruby 2.7Reached end of life

EOL
Mar 31, 2023
First published (updated )
EOL-ruby-2.7

debian/ruby1.9.1Weak Encryption

Risk 86
Severity
9.8
First published (updated )
CVE-2011-4121

ruby-lang RubyVarious methods in WEBrick::HTTPRequest in Ruby 1.9.2 and 1.8.7 and earlier do not validate the X-Fo…

Risk 27
Severity
5.3
First published (updated )
CVE-2011-3624

ruby-lang Ruby193ruby193 uses an insecure LD_LIBRARY_PATH setting.

Risk 18
Severity
3.3
First published (updated )
CVE-2013-1945

Ruby Ruby 2.6Reached end of life

EOL
Mar 31, 2022
First published (updated )
latest-version-ruby-2.6
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Ruby Ruby 2.6Reached end of life

EOL
Mar 31, 2022
First published (updated )
EOL-ruby-2.6

Ruby RubyArray#pack method converts the receiver’s contents into a string with specified format. If the recei…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-1643089

Ruby Ruby 2.5Reached end of life

EOL
Mar 31, 2021
First published (updated )
latest-version-ruby-2.5

Ruby Ruby 2.5Reached end of life

EOL
Mar 31, 2021
First published (updated )
EOL-ruby-2.5

Ruby RubyCommand Injection

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-1528218
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203