Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A regular expression based DoS vulnerability in Active Support <6.1.7.1 and <7.0.4.1. A specially crafted string passed to the underscore method can cause the regular expression engine to enter a state of catastrophic backtracking. This can cause the process to use large amounts of CPU and memory, leading to a possible DoS vulnerability.
CVSS Information
N/A
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
rubygem-activesupport 安全漏洞
Vulnerability Description
rubygem-activesupport是rubygems开源的一个应用程序。 rubygem-activesupport存在安全漏洞。攻击者利用该漏洞执行正则表达式拒绝服务攻击。
CVSS Information
N/A
Vulnerability Type
N/A