| Ruby | Number Of NVD | 91 | CRITICAL | 13 | HIGH | 37 | MEDIUM | 41 | LOW | 0 |
| URL | https://www.ruby-lang.org/ | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Explanation | It is an object-oriented scripting language developed by Yukihiro Matsumoto, which does not require compilation and is executed by an interpreter. | ||||||||
| Tag | |||||||||
| No | Type | Name | URL |
|---|---|---|---|
| 1 | https://www.ruby-lang.org/en/downloads/branches/ | ||
| 2 | https://www.ruby-lang.org/ja/security/ |
| No | Name | Latest Version | Release date | Initial release | Normal Support | Security Support Service Pack Support |
Extended for a fee |
Critical | High | Medium | Low |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 91 | Ruby 3.2 | 3.2.9 | July 24, 2025 | Dec. 25, 2022 | March 31, 2026 | 0 | 0 | 0 | 0 | ||
| 92 | Ruby 3.1 | 3.1.7 | March 26, 2025 | Dec. 25, 2021 | March 31, 2025 | 1 | 2 | 0 | 0 | ||
| 93 | Ruby 3.0 | 3.0.7 | April 23, 2024 | Dec. 25, 2020 | March 31, 2024 | 1 | 7 | 1 | 0 | ||
| 94 | Ruby 2.7 | 2.7.8 | March 30, 2023 | Dec. 25, 2019 | March 31, 2023 | 0 | 9 | 3 | 0 | ||
| 95 | Ruby 2.6 | 2.6.10 | April 12, 2022 | Dec. 25, 2018 | March 31, 2022 | 2 | 15 | 6 | 0 | ||
| 96 | Ruby 2.5 | 2.5.9 | April 5, 2021 | Dec. 25, 2017 | March 31, 2021 | 3 | 14 | 6 | 0 | ||
| 97 | Ruby 2.4 | 2.4.10 | March 31, 2020 | Dec. 25, 2016 | March 31, 2020 | 7 | 18 | 6 | 0 | ||
| 98 | Ruby 2.3 | 2.3.8 | Oct. 17, 2018 | Dec. 25, 2015 | March 31, 2019 | 10 | 15 | 5 | 0 | ||
| 99 | Ruby 2.2 | 2.2.10 | March 28, 2018 | Dec. 25, 2014 | March 31, 2018 | 9 | 15 | 7 | 0 | ||
| 100 | Ruby 2.1 | 2.1.10 | March 28, 2018 | Dec. 25, 2013 | March 31, 2017 | 3 | 10 | 11 | 0 | ||
| 101 | Ruby 2.0 | p648 | Dec. 16, 2015 | Feb. 24, 2013 | Feb. 24, 2016 | 3 | 10 | 21 | 0 | ||
| 102 | Ruby 1.9 | p551 | Nov. 13, 2014 | Dec. 25, 2007 | Feb. 23, 2015 | 4 | 19 | 29 | 0 | ||
| 103 | Ruby 1.8 | 1.8.7-p374 | June 27, 2013 | 4 | 22 | 28 | 0 |
| No | CVSS3 CVSS2 |
Level Attach Vector |
Title | CWE | CVE | cpe23Uri | or higher | or less | more than | less than | Update date Published date |
Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| 91 |
- 4.3 |
MEDIUM | The connect method in lib/net/http.rb in the (1) Net::HTTP and (2) Net::HTTPS libraries in Ruby 1.8.5 and 1.8.6 does not verify that the commonName (CN) field in a server certificate matches the doma… |
CWE-287
Improper Authentication |
CVE-2007-5162 |
cpe:2.3:a:ruby-lang:ruby:1.8.6:* cpe:2.3:a:ruby-lang:ruby:1.8.5:* |
2026-04-23 09:35 2007-10-1 |
Show | GitHub Exploit DB Packet Storm |