CVE-2025-27220

4.0MEDIUM

In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method.

发布于: 3/4/2025更新于: 11/3/2025
在NVD查看在MITRE查看

描述

In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method.

AI分析AI驱动

受影响产品

ruby-langcgi
ruby-langcgi
ruby-langcgi
0.3.6
ruby-langruby
3.1.0
ruby-langruby
3.2.0

参考资料