CVE-2022-28738
CVSS v3.1
9.8 (Critical)
CVSS v2.0
7.5 (High)
EPSS
0.45 % (76th)
Affected Products
1
Advisories
16
A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations.
Weaknesses
- CWE-415
- Double Free
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2022-05-09 18:15:08
(2 years ago) - Updated Date
-
2024-01-24 05:15:12
(7 months ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...