The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3670 advisory.

    Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text     files and to perform system management tasks.

    The following packages have been upgraded to a later upstream version: ruby (3.3). (RHEL-37446)

    Security Fix(es):

    * ruby: Buffer overread vulnerability in StringIO (CVE-2024-27280)

    * ruby: RCE vulnerability with .rdoc_options in RDoc (CVE-2024-27281)

    * ruby: Arbitrary memory address read vulnerability with Regex search     (CVE-2024-27282)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3671 advisory.

    Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text     files and to perform system management tasks.

    The following packages have been upgraded to a later upstream version: ruby (3.3). (RHEL-37697)

    Security Fix(es):

    * ruby: Buffer overread vulnerability in StringIO (CVE-2024-27280)

    * ruby: RCE vulnerability with .rdoc_options in RDoc (CVE-2024-27281)

    * ruby: Arbitrary memory address read vulnerability with Regex search (CVE-2024-27282)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:4499 advisory.

    Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text     files and to perform system management tasks.

    Security Fix(es):

    * rubygem-uri: ReDoS vulnerability - upstream's incomplete fix for CVE-2023-28755 (CVE-2023-36617)

    * ruby: Buffer overread vulnerability in StringIO (CVE-2024-27280)

    * ruby: RCE vulnerability with .rdoc_options in RDoc (CVE-2024-27281)

    * ruby: Arbitrary memory address read vulnerability with Regex search (CVE-2024-27282)

    * REXML: DoS parsing an XML with many `<`s in an attribute value (CVE-2024-35176)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and     other related information, refer to the CVE page(s) listed in the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-31cac8b8ec advisory.

    Upgrade to Ruby 3.2.4.

Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3546 advisory.

    Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text     files and to perform system management tasks.

    Security Fix(es):

    * ruby: RCE vulnerability with .rdoc_options in RDoc (CVE-2024-27281)
    * ruby: Buffer overread vulnerability in StringIO (CVE-2024-27280)
    * ruby: Arbitrary memory address read vulnerability with Regex search (CVE-2024-27282)

    For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.10 Release Notes     linked from the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of ruby installed on the remote host is prior to 3.0.7 / 3.3.1. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2024-114-01 advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of ruby installed on the remote host is prior to 2.0.0.648-36. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2637 advisory.

    A flaw was found in the way the Ruby REXML library parsed XML documents. Parsing a specially crafted XML     document using REXML and writing parsed data back to a new XML document results in creating a document     with a different structure. This issue could affect the integrity of processed data in applications using     REXML that parse XML documents, write data back to XML, and re-parse them again. (CVE-2021-28965)

    ruby: Arbitrary memory address read vulnerability with Regex search (CVE-2024-27282)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 2ce1a2f1-0177-11ef-a45e-08002784c58d advisory.

  - sp2ip reports:              If attacker-supplied data is provided to the Ruby regex             compiler,     it is possible to extract arbitrary heap data             relative to the start of the text, including     pointers and             sensitive strings.            (CVE-2024-27282)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8560:01 advisory.

    rubygem-uri: ReDoS vulnerability - upstream's incomplete fix for     CVE-2023-28755 (CVE-2023-36617)         ruby: Buffer overread vulnerability in StringIO (CVE-2024-27280)         ruby: RCE vulnerability with .rdoc_options in RDoc (CVE-2024-27281)         ruby: Arbitrary memory address read vulnerability with Regex search     (CVE-2024-27282)         REXML: DoS parsing an XML with many `<`s in an attribute value     (CVE-2024-35176)

Tenable has extracted the preceding description block directly from the MiracleLinux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of ruby installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27282 advisory.

  - An issue was discovered in Ruby 3.x through 3.3.0. If attacker-supplied data is provided to the Ruby regex     compiler, it is possible to extract arbitrary heap data relative to the start of the text, including     pointers and sensitive strings. The fixed versions are 3.0.7, 3.1.5, 3.2.4, and 3.3.1. (CVE-2024-27282)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-3838 advisory.

    - Fix double free in Regexp compilation.
      Resolves: CVE-2022-28738

Tenable has extracted the preceding description block directly from the Oracle Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:3500 advisory.

    Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text     files and to perform system management tasks.

    Security Fix(es):

    * ruby/cgi-gem: HTTP response splitting in CGI (CVE-2021-33621)

    * ruby: ReDoS vulnerability in URI (CVE-2023-28755)

    * ruby: ReDoS vulnerability in Time (CVE-2023-28756)

    * ruby: RCE vulnerability with .rdoc_options in RDoc (CVE-2024-27281)

    * ruby: Buffer overread vulnerability in StringIO (CVE-2024-27280)

    * ruby: Arbitrary memory address read vulnerability with Regex search (CVE-2024-27282)

    For more details about the security issue(s), including the impact, a CVSS     score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References     section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0331 advisory.

    Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:

    CVE-2023-36617:
    A ReDoS issue was discovered in the URI component before 0.12.2 for Ruby. The URI parser mishandles     invalid URLs that have specific characters. There is an increase in execution time for parsing strings to     URI objects with rfc2396_parser.rb and rfc3986_parser.rb. NOTE: this issue exists becuse of an incomplete     fix for CVE-2023-28755. Version 0.10.3 is also a fixed version.

    CVE-2024-27280:
    A buffer-overread issue was discovered in StringIO 3.0.1, as distributed in Ruby 3.0.x through 3.0.6 and     3.1.x through 3.1.4. The ungetbyte and ungetc methods on a StringIO can read past the end of a string, and     a subsequent call to StringIO.gets may return the memory value. 3.0.3 is the main fixed version; however,     for Ruby 3.0 users, a fixed version is stringio 3.0.1.1, and for Ruby 3.1 users, a fixed version is     stringio 3.0.1.2.

    CVE-2024-27281:
    An issue was discovered in RDoc 6.3.3 through 6.6.2, as distributed in Ruby 3.x through 3.3.0. When     parsing .rdoc_options (used for configuration in RDoc) as a YAML file, object injection and resultant     remote code execution are possible because there are no restrictions on the classes that can be restored.
    (When loading the documentation cache, object injection and resultant remote code execution are also     possible if there were a crafted cache.) The main fixed version is 6.6.3.1. For Ruby 3.0 users, a fixed     version is rdoc 6.3.4.1. For Ruby 3.1 users, a fixed version is rdoc 6.4.1.1. For Ruby 3.2 users, a fixed     version is rdoc 6.5.1.1.

    CVE-2024-27282:
    An issue was discovered in Ruby 3.x through 3.3.0. If attacker-supplied data is provided to the Ruby regex     compiler, it is possible to extract arbitrary heap data relative to the start of the text, including     pointers and sensitive strings. The fixed versions are 3.0.7, 3.1.5, 3.2.4, and 3.3.1.

    CVE-2024-35176:
     REXML is an XML toolkit for Ruby. The REXML gem before 3.2.6 has a denial of service vulnerability when     it parses an XML that has many <s in an attribute value. Those who need to parse untrusted XMLs may be     impacted to this vulnerability. The REXML gem 3.2.7 or later include the patch to fix this vulnerability.
    As a workaround, don't parse untrusted XMLs.

Tenable has extracted the preceding description block directly from the Tencent Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:3668 advisory.

    * ruby: Buffer overread vulnerability in StringIO (CVE-2024-27280)

    * ruby: RCE vulnerability with .rdoc_options in RDoc (CVE-2024-27281)

    * ruby: Arbitrary memory address read vulnerability with Regex search (CVE-2024-27282)

Tenable has extracted the preceding description block directly from the Rocky Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

ID	Name	Product	Family	Published	Updated	Severity
200155	RHEL 8 : ruby:3.3 (RHSA-2024:3670)	Nessus	Red Hat Local Security Checks	6/6/2024	4/29/2025	critical
200168	RHEL 9 : ruby:3.3 (RHSA-2024:3671)	Nessus	Red Hat Local Security Checks	6/6/2024	4/29/2025	critical
202189	RHEL 8 : ruby (RHSA-2024:4499)	Nessus	Red Hat Local Security Checks	7/11/2024	4/8/2025	medium
194960	Fedora 39 : ruby (2024-31cac8b8ec)	Nessus	Fedora Local Security Checks	5/3/2024	11/14/2024	medium
200061	RHEL 8 : ruby:3.1 (RHSA-2024:3546)	Nessus	Red Hat Local Security Checks	6/3/2024	4/29/2025	critical
193804	Slackware Linux 15.0 / current ruby Multiple Vulnerabilities (SSA:2024-114-01)	Nessus	Slackware Local Security Checks	4/24/2024	7/4/2024	critical
207407	Amazon Linux 2 : ruby (ALAS-2024-2637)	Nessus	Amazon Linux Local Security Checks	9/18/2024	12/11/2024	high
193817	FreeBSD : ruby -- Arbitrary memory address read vulnerability with Regex search (2ce1a2f1-0177-11ef-a45e-08002784c58d)	Nessus	FreeBSD Local Security Checks	4/24/2024	11/4/2024	medium
292397	MiracleLinux 8 : ruby:2.5 (AXSA:2024-8560:01)	Nessus	Miracle Linux Local Security Checks	1/20/2026	1/20/2026	critical
215915	Azure Linux 3.0 Security Update: ruby (CVE-2024-27282)	Nessus	Azure Linux Local Security Checks	2/10/2025	9/15/2025	medium
200471	Oracle Linux 9 : ruby (ELSA-2024-3838)	Nessus	Oracle Linux Local Security Checks	6/13/2024	9/9/2025	critical
198157	RHEL 8 : ruby:3.0 (RHSA-2024:3500)	Nessus	Red Hat Local Security Checks	5/30/2024	4/29/2025	critical
276250	TencentOS Server 3: ruby (TSSA-2024:0331)	Nessus	Tencent Local Security Checks	11/20/2025	12/4/2025	critical
200569	Rocky Linux 9 : ruby:3.1 (RLSA-2024:3668)	Nessus	Rocky Linux Local Security Checks	6/14/2024	7/3/2024	critical

Detections

Analytics

Plugins Search

critical

critical

medium

medium

critical

critical

high

medium

critical

medium

critical

critical

critical

critical