vulnerability
Alma Linux: CVE-2025-27220: Moderate: ruby:3.1 security update (ALSA-2025-4488)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | Mar 4, 2025 | May 9, 2025 | May 9, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Mar 4, 2025
Added
May 9, 2025
Modified
May 9, 2025
Description
In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method.
Solution(s)
alma-upgrade-rubygem-mysql2alma-upgrade-rubygem-mysql2-docalma-upgrade-rubygem-pgalma-upgrade-rubygem-pg-doc
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.