CVE-2023-28755 in Rubyinfo

Zusammenfassung

von MITRE • 31.03.2023

A ReDoS issue was discovered in the URI component through 0.12.0 in Ruby through 3.2.1. The URI parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to URI objects. The fixed versions are 0.12.1, 0.11.1, 0.10.2 and 0.10.0.1.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservieren

23.03.2023

Veröffentlichung

31.03.2023

Moderieren

akzeptiert

Eintrag

VDB-224637

CPE

bereit

EPSS

0.02637

KEV

nein

Aktivitäten

very low

Quellen

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!