Date.parse in the date gem through... CVE-2021-41817

5.0 AV AC AU C I A
发布: 2022-01-01
修订: 2024-11-21

Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service) via a long string. The fixed versions are 3.2.1, 3.1.2, 3.0.2, and 2.0.1.

0%
暂无可用Exp或PoC
当前有19条受影响产品信息