CVE-2023-28755 in Rubyinformación

Resumen

por MITRE • 2023-03-31

A ReDoS issue was discovered in the URI component through 0.12.0 in Ruby through 3.2.1. The URI parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to URI objects. The fixed versions are 0.12.1, 0.11.1, 0.10.2 and 0.10.0.1.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservar

2023-03-23

Divulgación

2023-03-31

Moderación

aceptado

Artículo

VDB-224637

CPE

listo

EPSS

0.02637

KEV

no

Actividades

muy bajo

Fuentes

Want to know what is going to be exploited?

We predict KEV entries!