pkg:RubyGems/nokogiri

共 32 筆 CVECRITICAL3HIGH19MEDIUM7

✅ 檢查你的版本

所有已知漏洞

  • CRITICAL9.8CVE-2019-11068libxslt - security update
    from 0, < 1.10.3
  • CRITICAL9.8CVE-2019-5477ruby-nokogiri - security update
    from 0, < 1.10.4
  • CRITICAL9.8CVE-2016-4658libxml2 - security update
    from 0, < 1.7.1
  • HIGH8.8CVE-2021-30560libxslt - security update
    from 0, < 1.13.2
  • HIGH8.8CVE-2021-3518Nokogiri Implements libxml2 version vulnerable to use-after-free
    from 0, < 1.11.4
  • HIGH8.8CVE-2017-15412libxml2 - security update
    from 0, < 1.8.2
  • HIGH8.8CVE-2017-5029chromium-browser - security update
    from 0, < 1.7.2
  • HIGH8.6CVE-2021-3517Nokogiri contains libxml Out-of-bounds Write vulnerability
    from 0, < 1.11.4
  • HIGH8.2CVE-2022-29181Nokogiri Improperly Handles Unexpected Data Type
    from 0, < 1.13.6
  • HIGH7.5CVE-2022-23476Unchecked return value from xmlTextReaderExpand
    >= 1.13.8, < 1.13.10
  • HIGH7.5CVE-2019-5815libxslt - security update
    from 0, < 1.10.5
  • HIGH7.5CVE-2019-18197libxslt - security update
    from 0, < 1.10.5
  • HIGH7.5CVE-2019-13118libxslt Type Confusion vulnerability that affects Nokogiri
    from 0, < 1.10.5
  • HIGH7.5CVE-2017-16932Nokogiri gem, via libxml, is affected by DoS vulnerabilities
    from 0, < 1.8.1
  • HIGH7.5CVE-2012-6685libnokogiri-ruby - security update
    from 0, < 1.5.4
  • HIGH7.5CVE-2022-24836ruby-nokogiri - security update
    from 0, < 1.13.4
  • HIGH7.5CVE-2018-25032Nokogiri affected by zlib's Out-of-bounds Write vulnerability
    from 0, < 1.13.4
  • HIGH7.5CVE-2021-41098Improper Restriction of XML External Entity Reference (XXE) in Nokogiri on JRuby
    from 0, < 1.12.5
  • HIGH7.5CVE-2020-7595libxml as used in Nokogiri has an infinite loop in a certain end-of-file situation
    from 0, < 1.10.8
  • HIGH7.5CVE-2018-14404Nokogiri NULL Pointer Dereference
    from 0, < 1.8.5
  • HIGH7.5CVE-2015-8806libxml2 - security update
    >= 1.6.0, < 1.6.8
  • HIGH7.5CVE-2017-9050Out-of-bounds read in nokogiri
    from 0, < 1.8.1
  • MEDIUM6.5CVE-2013-6460Nokogiri vulnerable to DoS while parsing XML documents
    >= 1.5.0, < 1.5.11
  • MEDIUM6.5CVE-2013-6461Nokogiri vulnerable to DoS while parsing XML entities
    >= 1.5.0, < 1.5.11
  • MEDIUM6.5CVE-2017-18258libxml2 - security update
    from 0, < 1.8.2
  • MEDIUM6.1CVE-2018-8048ruby-loofah - security update
    from 0, < 1.8.3
  • MEDIUM5.9CVE-2021-3537Nokogiri Implements libxml2 version vulnerable to null pointer dereferencing
    from 0, < 1.11.4
  • MEDIUM5.3CVE-2019-13117Uninitialized read in Nokogiri gem
    from 0, < 1.10.5
  • MEDIUM4.3CVE-2020-26247Nokogiri::XML::Schema trusts input by default, exposing risk of XXE vulnerability
    from 0, < 1.11.0
  • CVE-2015-7499Heap-based buffer overflow in nokogiri
    >= 1.6.0, < 1.6.7.2
  • CVE-2015-5312libxml2 - security update
    >= 1.6.0, < 1.6.7.1
  • CVE-2015-1819libxml2 - security update
    >= 1.6.6.0, < 1.6.6.4