Vulnerability Reportmetasploitframework/metasploit-framework:6.4.0

metasploitframework/metasploit-framework:latestmetasploitframework/metasploit-framework:6.4.0
DIGESTsha256:ba9ecc0172052ea687adb3b3e6356b24dba4497d1bf73a6de0e201f1e25e9777

Executive Summary

Threat Score
74/100CAUTION
Reputation
UNVERIFIED

This image carries significant risk; production deployment is highly discouraged without strict compensating controls. An attacker could cause denial of service via TLS crashes (CVE-2024-6119) or, under specific encoding configurations, achieve SQL injection through PostgreSQL client flaws (CVE-2025-1094). Note that CVE-2025-1094 only applies when non-default encoding settings are enabled, and CVE-2024-6119 requires outbound TLS connections to malicious servers.

Vulnerabilities

Vulnerability Log

335 total
CVE IDAdjusted SeverityPackageExploit ProbabilityRisk Context
CVE-2025-1094HIGH8
libecpg
15.6-r0
fixed in 15.11-r0
89.5%
Actively Exploited
Directly ExposedContext importance: MEDIUM
CVE-2025-1094HIGH8
libpq
15.6-r0
fixed in 15.11-r0
89.5%
Actively Exploited
Directly ExposedContext importance: MEDIUM
CVE-2024-6119HIGH7.8
libcrypto3
3.1.4-r5
fixed in 3.1.7-r0
66.6%
Actively Exploited
Directly ExposedContext importance: MEDIUM
CVE-2024-6119HIGH7.8
libssl3
3.1.4-r5
fixed in 3.1.7-r0
66.6%
Actively Exploited
Directly ExposedContext importance: MEDIUM
CVE-2024-6119HIGH7.8
openssl
3.1.4-r5
fixed in 3.1.7-r0
66.6%
Actively Exploited
Directly ExposedContext importance: MEDIUM
CVE-2024-7348HIGH7.5
libecpg
15.6-r0
fixed in 15.8-r0
1.6%
Low-Moderate Risk
Directly Exposed
CVE-2024-45490HIGH7.5
libexpat
2.6.2-r0
fixed in 2.6.3-r0
1.7%
Low-Moderate Risk
Directly Exposed
CVE-2024-8176HIGH7.5
libexpat
2.6.2-r0
fixed in 2.7.0-r0
1.6%
Low-Moderate Risk
Directly Exposed
CVE-2024-7348HIGH7.5
libpq
15.6-r0
fixed in 15.8-r0
1.6%
Low-Moderate Risk
Directly Exposed
CVE-2024-6232HIGH7.5
python3
3.11.8-r0
fixed in 3.11.10-r0
2.2%
Low-Moderate Risk
Directly Exposed
CVE-2024-7592HIGH7.5
python3
3.11.8-r0
fixed in 3.11.10-r0
2.3%
Low-Moderate Risk
Directly Exposed
CVE-2024-6232HIGH7.5
python3-pyc
3.11.8-r0
fixed in 3.11.10-r0
2.2%
Low-Moderate Risk
Directly Exposed
CVE-2024-7592HIGH7.5
python3-pyc
3.11.8-r0
fixed in 3.11.10-r0
2.3%
Low-Moderate Risk
Directly Exposed
CVE-2024-6232HIGH7.5
python3-pycache-pyc0
3.11.8-r0
fixed in 3.11.10-r0
2.2%
Low-Moderate Risk
Directly Exposed
CVE-2024-7592HIGH7.5
python3-pycache-pyc0
3.11.8-r0
fixed in 3.11.10-r0
2.3%
Low-Moderate Risk
Directly Exposed
CVE-2024-49767HIGH7.5
Werkzeug
3.0.1
fixed in 3.0.6
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2024-39689HIGH7.5
certifi
2024.2.2
fixed in 2024.7.4
1.0%
Low-Moderate Risk
Directly Exposed
CVE-2025-27610HIGH7.5
rack
2.2.8
fixed in ~> 2.2.13, ~> 3.0.14, >= 3.1.12
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2024-49761HIGH7.5
rexml
3.2.5
fixed in >= 3.3.9
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2024-41123HIGH7.5
rexml
3.2.5
fixed in >= 3.3.3
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2024-41946HIGH7.5
rexml
3.2.5
fixed in >= 3.3.3
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2024-49761HIGH7.5
rexml
3.2.6
fixed in >= 3.3.9
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2024-41123HIGH7.5
rexml
3.2.6
fixed in >= 3.3.3
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2024-41946HIGH7.5
rexml
3.2.6
fixed in >= 3.3.3
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2024-56201HIGH7.48
Jinja2
3.1.3
fixed in 3.1.5
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-27516HIGH7.48
Jinja2
3.1.3
fixed in 3.1.6
0.5%
Theoretical Threat
Directly Exposed
CVE-2024-12797HIGH7.4
cryptography
42.0.5
fixed in 44.0.1
2.4%
Low-Moderate Risk
Directly Exposed
CVE-2026-41316MEDIUM6.88
erb
2.2.3
fixed in ~> 4.0.3.1, ~> 4.0.4.1, ~> 6.0.1.1, >= 6.0.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-0938MEDIUM6.8
python3
3.11.8-r0
fixed in 3.11.12-r0
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2025-0938MEDIUM6.8
python3-pyc
3.11.8-r0
fixed in 3.11.12-r0
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2025-0938MEDIUM6.8
python3-pycache-pyc0
3.11.8-r0
fixed in 3.11.12-r0
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2026-27820MEDIUM6.66
zlib
2.1.1
fixed in ~> 3.0.1, ~> 3.1.2, >= 3.2.3
0.6%
Theoretical Threat
Directly ExposedContext importance: MEDIUM
CVE-2024-9287MEDIUM6.63
python3
3.11.8-r0
fixed in 3.11.11-r0
0.6%
Theoretical Threat
Directly Exposed
CVE-2024-9287MEDIUM6.63
python3-pyc
3.11.8-r0
fixed in 3.11.11-r0
0.6%
Theoretical Threat
Directly Exposed
CVE-2024-9287MEDIUM6.63
python3-pycache-pyc0
3.11.8-r0
fixed in 3.11.11-r0
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-25184MEDIUM6.5
rack
2.2.8
fixed in ~> 2.2.11, ~> 3.0.12, >= 3.1.10
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2025-31115MEDIUM6.38
xz-libs
5.4.3-r0
fixed in 5.4.3-r1
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-30922MEDIUM6.38
pyasn1
0.5.1
fixed in 0.6.3
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-66418MEDIUM6.38
urllib3
2.2.1
fixed in 2.6.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-66471MEDIUM6.38
urllib3
2.2.1
fixed in 2.6.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-21441MEDIUM6.38
urllib3
2.2.1
fixed in 2.6.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-33176MEDIUM6.38
activesupport
7.0.8
fixed in ~> 7.2.3, >= 7.2.3.1, ~> 8.0.4, >= 8.0.4.1, >= 8.1.2.1
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-33306MEDIUM6.38
bcrypt
3.1.19
fixed in >= 3.1.22
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-27219MEDIUM6.38
cgi
0.3.6
fixed in ~> 0.3.5.1, ~> 0.3.7, >= 0.4.2
0.8%
Theoretical Threat
Directly Exposed
CVE-2025-27220MEDIUM6.38
cgi
0.3.6
fixed in ~> 0.3.5.1, ~> 0.3.7, >= 0.4.2
0.7%
Theoretical Threat
Directly Exposed
CVE-2026-42245MEDIUM6.38
net-imap
0.2.3
fixed in ~> 0.4.24, ~> 0.5.14, >= 0.6.4
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-42245MEDIUM6.38
net-imap
0.4.0
fixed in ~> 0.4.24, ~> 0.5.14, >= 0.6.4
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-27111MEDIUM6.38
rack
2.2.8
fixed in ~> 2.2.12, ~> 3.0.13, >= 3.1.11
0.7%
Theoretical Threat
Directly Exposed
CVE-2025-46727MEDIUM6.38
rack
2.2.8
fixed in ~> 2.2.14, ~> 3.0.16, >= 3.1.14
0.9%
Theoretical Threat
Directly Exposed
CVE-2025-59830MEDIUM6.38
rack
2.2.8
fixed in >= 2.2.18
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-61770MEDIUM6.38
rack
2.2.8
fixed in ~> 2.2.19, ~> 3.1.17, >= 3.2.2
0.8%
Theoretical Threat
Directly Exposed
CVE-2025-61771MEDIUM6.38
rack
2.2.8
fixed in ~> 2.2.19, ~> 3.1.17, >= 3.2.2
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-61919MEDIUM6.38
rack
2.2.8
fixed in ~> 2.2.20, ~> 3.1.18, >= 3.2.3
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-22860MEDIUM6.38
rack
2.2.8
fixed in ~> 2.2.22, ~> 3.1.20, >= 3.2.5
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-34785MEDIUM6.38
rack
2.2.8
fixed in ~> 2.2.23, ~> 3.1.21, >= 3.2.6
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-34829MEDIUM6.38
rack
2.2.8
fixed in ~> 2.2.23, ~> 3.1.21, >= 3.2.6
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-34230MEDIUM6.38
rack
2.2.8
fixed in ~> 2.2.23, ~> 3.1.21, >= 3.2.6
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-34826MEDIUM6.38
rack
2.2.8
fixed in ~> 2.2.23, ~> 3.1.21, >= 3.2.6
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-34830MEDIUM6.38
rack
2.2.8
fixed in ~> 2.2.23, ~> 3.1.21, >= 3.2.6
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-61921MEDIUM6.38
sinatra
3.1.0
fixed in >= 4.2.0
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-61594MEDIUM6.38
uri
0.12.1
fixed in ~> 0.12.5, ~> 0.13.3, >= 1.0.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-12790MEDIUM6.29
mqtt
0.6.0
fixed in >= 0.7.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-42246MEDIUM6.29
net-imap
0.2.3
fixed in ~> 0.3.10, ~> 0.4.24, ~> 0.5.14, >= 0.6.4
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-42246MEDIUM6.29
net-imap
0.4.0
fixed in ~> 0.3.10, ~> 0.4.24, ~> 0.5.14, >= 0.6.4
0.4%
Theoretical Threat
Directly Exposed
CVE-2024-26143MEDIUM6.1
actionpack
7.0.8
fixed in ~> 7.0.8, >= 7.0.8.1, >= 7.1.3.1
1.0%
Low-Moderate Risk
Directly Exposed
CVE-2025-26519MEDIUM5.95
musl
1.2.4-r2
fixed in 1.2.4-r3
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-26519MEDIUM5.95
musl-dev
1.2.4-r2
fixed in 1.2.4-r3
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-26519MEDIUM5.95
musl-utils
1.2.4-r2
fixed in 1.2.4-r3
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-5535MEDIUM5.9
libcrypto3
3.1.4-r5
fixed in 3.1.6-r0
5.6%
Low-Moderate Risk
Directly Exposed
CVE-2024-50602MEDIUM5.9
libexpat
2.6.2-r0
fixed in 2.6.4-r0
1.0%
Low-Moderate Risk
Directly Exposed
CVE-2024-5535MEDIUM5.9
libssl3
3.1.4-r5
fixed in 3.1.6-r0
5.6%
Low-Moderate Risk
Directly Exposed
CVE-2024-5535MEDIUM5.9
openssl-dev
3.1.4-r5
fixed in 3.1.6-r0
5.6%
Low-Moderate Risk
Directly Exposed
CVE-2024-43398MEDIUM5.9
rexml
3.2.5
fixed in >= 3.3.6
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2024-43398MEDIUM5.9
rexml
3.2.6
fixed in >= 3.3.6
1.2%
Low-Moderate Risk
Directly Exposed
CVE-2024-6923MEDIUM5.78
python3
3.11.8-r0
fixed in 3.11.10-r0
0.7%
Theoretical Threat
Directly Exposed
CVE-2024-6923MEDIUM5.78
python3-pyc
3.11.8-r0
fixed in 3.11.10-r0
0.7%
Theoretical Threat
Directly Exposed
CVE-2024-6923MEDIUM5.78
python3-pycache-pyc0
3.11.8-r0
fixed in 3.11.10-r0
0.7%
Theoretical Threat
Directly Exposed
CVE-2024-4741MEDIUM5.6
libcrypto3
3.1.4-r5
fixed in 3.1.6-r0
2.9%
Low-Moderate Risk
Directly Exposed
CVE-2024-4741MEDIUM5.6
libssl3
3.1.4-r5
fixed in 3.1.6-r0
2.9%
Low-Moderate Risk
Directly Exposed
CVE-2024-4741MEDIUM5.6
openssl-dev
3.1.4-r5
fixed in 3.1.6-r0
2.9%
Low-Moderate Risk
Directly Exposed
CVE-2026-26007MEDIUM5.52
cryptography
42.0.5
fixed in 46.0.5
0.2%
Theoretical Threat
Directly Exposed
CVE-2024-37891MEDIUM5.52
urllib3
2.2.1
fixed in 1.26.19, 2.2.2
1.0%
Theoretical Threat
Directly Exposed
CVE-2026-35611MEDIUM5.52
addressable
2.8.5
fixed in >= 2.9.0
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-33637MEDIUM5.52
faraday
2.7.11
fixed in >= 2.14.2
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-43857MEDIUM5.52
net-imap
0.2.3
fixed in ~> 0.2.5, ~> 0.3.9, ~> 0.4.20, >= 0.5.7
0.4%
Theoretical Threat
Directly Exposed
CVE-2025-25186MEDIUM5.52
net-imap
0.4.0
fixed in ~> 0.3.8, ~> 0.4.19, >= 0.5.6
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-43857MEDIUM5.52
net-imap
0.4.0
fixed in ~> 0.2.5, ~> 0.3.9, ~> 0.4.20, >= 0.5.7
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-42256MEDIUM5.52
net-imap
0.4.0
fixed in ~> 0.4.24, ~> 0.5.14, >= 0.6.4
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-34786MEDIUM5.52
rack
2.2.8
fixed in ~> 2.2.23, ~> 3.1.21, >= 3.2.6
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-34831MEDIUM5.52
rack
2.2.8
fixed in ~> 2.2.23, ~> 3.1.21, >= 3.2.6
0.1%
Theoretical Threat
Directly Exposed
CVE-2024-56326MEDIUM5.35
Jinja2
3.1.3
fixed in 3.1.5
0.5%
Theoretical Threat
Directly Exposed
CVE-2024-4603MEDIUM5.3
libcrypto3
3.1.4-r5
fixed in 3.1.5-r0
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2024-4603MEDIUM5.3
libssl3
3.1.4-r5
fixed in 3.1.5-r0
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2024-4603MEDIUM5.3
openssl-dev
3.1.4-r5
fixed in 3.1.5-r0
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2023-27043MEDIUM5.3
python3
3.11.8-r0
fixed in 3.11.10-r0
2.5%
Low-Moderate Risk
Directly Exposed
CVE-2024-8088MEDIUM5.3
python3
3.11.8-r0
fixed in 3.11.8-r1
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2023-27043MEDIUM5.3
python3-pyc
3.11.8-r0
fixed in 3.11.10-r0
2.5%
Low-Moderate Risk
Directly Exposed
CVE-2024-8088MEDIUM5.3
python3-pyc
3.11.8-r0
fixed in 3.11.8-r1
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2023-27043MEDIUM5.3
python3-pycache-pyc0
3.11.8-r0
fixed in 3.11.10-r0
2.5%
Low-Moderate Risk
Directly Exposed
CVE-2024-8088MEDIUM5.3
python3-pycache-pyc0
3.11.8-r0
fixed in 3.11.8-r1
1.3%
Low-Moderate Risk
Directly Exposed
CVE-2024-35176MEDIUM5.3
rexml
3.2.5
fixed in >= 3.2.7
2.1%
Low-Moderate Risk
Directly Exposed
CVE-2024-35176MEDIUM5.3
rexml
3.2.6
fixed in >= 3.2.7
2.1%
Low-Moderate Risk
Directly Exposed
CVE-2023-36617MEDIUM5.3
uri
0.12.1
fixed in ~> 0.10.0.3, ~> 0.10.3, ~> 0.11.2, >= 0.12.2
1.5%
Low-Moderate Risk
Directly Exposed
CVE-2025-50181MEDIUM5.18
urllib3
2.2.1
fixed in 2.5.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-50182MEDIUM5.18
urllib3
2.2.1
fixed in 2.5.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-33170MEDIUM5.18
activesupport
7.0.8
fixed in ~> 7.2.3, >= 7.2.3.1, ~> 8.0.4, >= 8.0.4.1, >= 8.1.2.1
0.3%
Theoretical Threat
Directly Exposed
CVE-2024-53985MEDIUM5.18
rails-html-sanitizer
1.6.0
fixed in >= 1.6.1
0.6%
Theoretical Threat
Directly Exposed
CVE-2024-53986MEDIUM5.18
rails-html-sanitizer
1.6.0
fixed in >= 1.6.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2024-53987MEDIUM5.18
rails-html-sanitizer
1.6.0
fixed in >= 1.6.1
0.4%
Theoretical Threat
Directly Exposed
CVE-2024-53988MEDIUM5.18
rails-html-sanitizer
1.6.0
fixed in >= 1.6.1
0.4%
Theoretical Threat
Directly Exposed
CVE-2024-53989MEDIUM5.18
rails-html-sanitizer
1.6.0
fixed in >= 1.6.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-4207MEDIUM5.02
libecpg
15.6-r0
fixed in 15.13-r0
0.6%
Theoretical Threat
Directly Exposed
CVE-2025-4207MEDIUM5.02
libpq
15.6-r0
fixed in 15.13-r0
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-25765MEDIUM4.93
faraday
2.7.11
fixed in ~> 1.10.5, >= 2.14.1
0.4%
Theoretical Threat
Directly Exposed
CVE-2024-2511MEDIUM4.81
libcrypto3
3.1.4-r5
fixed in 3.1.4-r6
54.0%
Actively Exploited
Directly Exposed
CVE-2024-2511MEDIUM4.81
libssl3
3.1.4-r5
fixed in 3.1.4-r6
54.0%
Actively Exploited
Directly Exposed
CVE-2024-2511MEDIUM4.81
openssl-dev
3.1.4-r5
fixed in 3.1.4-r6
54.0%
Actively Exploited
Directly Exposed
CVE-2024-35195MEDIUM4.76
requests
2.31.0
fixed in 2.32.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-25645MEDIUM4.67
requests
2.31.0
fixed in 2.33.0
0.2%
Theoretical Threat
Directly Exposed
CVE-2024-10976MEDIUM4.59
libecpg
15.6-r0
fixed in 15.9-r0
0.8%
Theoretical Threat
Directly Exposed
CVE-2024-10976MEDIUM4.59
libpq
15.6-r0
fixed in 15.9-r0
0.8%
Theoretical Threat
Directly Exposed
CVE-2024-34064MEDIUM4.59
Jinja2
3.1.3
fixed in 3.1.4
1.0%
Theoretical Threat
Directly Exposed
CVE-2026-33168MEDIUM4.59
actionview
7.0.8
fixed in ~> 7.2.3, >= 7.2.3.1, ~> 8.0.4, >= 8.0.4.1, >= 8.1.2.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-25500MEDIUM4.59
rack
2.2.8
fixed in ~> 2.2.22, ~> 3.1.20, >= 3.2.5
0.2%
Theoretical Threat
Directly Exposed
CVE-2024-21510MEDIUM4.59
sinatra
3.1.0
fixed in >= 4.1.0
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-6965MEDIUM4.58
sqlite-libs
3.41.2-r3
fixed in 3.41.2-r4
64.9%
Actively Exploited
Post-Exploit
CVE-2024-6197MEDIUM4.5
libcurl
8.5.0-r0
fixed in 8.9.0-r0
4.3%
Low-Moderate Risk
Post-Exploit
CVE-2024-49766MEDIUM4.5
Werkzeug
3.0.1
fixed in 3.0.6
0.8%
Theoretical Threat
Directly Exposed
CVE-2025-66221MEDIUM4.5
Werkzeug
3.0.1
fixed in 3.1.4
0.5%
Theoretical Threat
Directly Exposed
CVE-2026-21860MEDIUM4.5
Werkzeug
3.0.1
fixed in 3.1.5
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-27199MEDIUM4.5
Werkzeug
3.0.1
fixed in 3.1.6
0.6%
Theoretical Threat
Directly Exposed
CVE-2026-34073MEDIUM4.5
cryptography
42.0.5
fixed in 46.0.6
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-45409MEDIUM4.5
idna
3.6
fixed in 3.15
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-27448MEDIUM4.5
pyOpenSSL
24.1.0
fixed in 26.0.0
0.2%
Theoretical Threat
Directly Exposed
CVE-2024-47081MEDIUM4.5
requests
2.31.0
fixed in 2.32.4
0.8%
Theoretical Threat
Directly Exposed
CVE-2026-44431MEDIUM4.5
urllib3
2.2.1
fixed in 2.7.0
0.3%
Theoretical Threat
Directly Exposed
CVE-2026-33169MEDIUM4.5
activesupport
7.0.8
fixed in ~> 7.2.3, >= 7.2.3.1, ~> 8.0.4, >= 8.0.4.1, >= 8.1.2.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-14762MEDIUM4.5
aws-sdk-s3
1.136.0
fixed in >= 1.208.0
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-61772MEDIUM4.5
rack
2.2.8
fixed in ~> 2.2.19, ~> 3.1.17, >= 3.2.2
0.8%
Theoretical Threat
Directly Exposed
CVE-2025-61780MEDIUM4.5
rack
2.2.8
fixed in ~> 2.2.20, ~> 3.1.18, >= 3.2.3
0.4%
Theoretical Threat
Directly Exposed
CVE-2026-34763MEDIUM4.5
rack
2.2.8
fixed in ~> 2.2.23, ~> 3.1.21, >= 3.2.6
0.2%
Theoretical Threat
Directly Exposed
CVE-2026-26961MEDIUM4.5
rack
2.2.8
fixed in ~> 2.2.23, ~> 3.1.21, >= 3.2.6
0.3%
Theoretical Threat
Directly Exposed
CVE-2025-24294MEDIUM4.5
resolv
0.2.1
fixed in ~> 0.2.2, ~> 0.3.0, >= 0.6.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2025-27221MEDIUM4.5
uri
0.12.1
fixed in ~> 0.11.3, ~> 0.12.4, ~> 0.13.2, >= 1.0.3
0.5%
Theoretical Threat
Directly Exposed
CVE-2024-7264MEDIUM4.48
curl
8.5.0-r0
fixed in 8.9.1-r0
16.2%
High Exploitation Risk
Post-Exploit
CVE-2024-7264MEDIUM4.48
libcurl
8.5.0-r0
fixed in 8.9.1-r0
16.2%
High Exploitation Risk
Post-Exploit
CVE-2021-43809MEDIUM4.38
bundler
2.1.4
fixed in >= 2.2.33
2.8%
Low-Moderate Risk
Post-Exploit
CVE-2025-4516MEDIUM4.33
python3
3.11.8-r0
fixed in 3.11.12-r1
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-4516MEDIUM4.33
python3-pyc
3.11.8-r0
fixed in 3.11.12-r1
0.2%
Theoretical Threat
Directly Exposed
CVE-2025-4516MEDIUM4.33
python3-pycache-pyc0
3.11.8-r0
fixed in 3.11.12-r1
0.2%
Theoretical Threat
Directly Exposed
CVE-2024-39908MEDIUM4.3
rexml
3.2.5
fixed in >= 3.3.2
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2024-39908MEDIUM4.3
rexml
3.2.6
fixed in >= 3.3.2
1.4%
Low-Moderate Risk
Directly Exposed
CVE-2024-13176MEDIUM4
libcrypto3
3.1.4-r5
fixed in 3.1.8-r0
0.6%
Theoretical Threat
Directly Exposed
CVE-2024-13176MEDIUM4
libssl3
3.1.4-r5
fixed in 3.1.8-r0
0.6%
Theoretical Threat
Directly Exposed
CVE-2024-13176MEDIUM4
openssl-dev
3.1.4-r5
fixed in 3.1.8-r0
0.6%
Theoretical Threat
Directly Exposed
CVE-2024-32465LOW3.98
git
2.40.1-r0
fixed in 2.40.3-r0
0.9%
Theoretical Threat
Post-Exploit
CVE-2024-9681LOW3.9
curl
8.5.0-r0
fixed in 8.11.0-r0
2.0%
Low-Moderate Risk
Post-Exploit
CVE-2024-9681LOW3.9
libcurl
8.5.0-r0
fixed in 8.11.0-r0
2.0%
Low-Moderate Risk
Post-Exploit
CVE-2025-0840LOW3.82
binutils
2.40-r7
fixed in 2.40-r8
0.7%
Theoretical Threat
Post-Exploit
CVE-2024-21647LOW3.82
puma
6.4.0
fixed in ~> 5.6.8, >= 6.4.2
1.0%
Theoretical Threat
Post-Exploit
CVE-2024-47220LOW3.82
webrick
1.8.1
fixed in >= 1.8.2
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-41493LOW3.82
yard
0.9.36
fixed in >= 0.9.42
0.4%
Theoretical Threat
Post-Exploit
CVE-2024-32002LOW3.73
git
2.40.1-r0
fixed in 2.40.3-r0
22.5%
High Exploitation Risk
Post-Exploit
CVE-2024-9143LOW3.7
libcrypto3
3.1.4-r5
fixed in 3.1.7-r1
6.0%
Low-Moderate Risk
Directly Exposed
CVE-2024-9143LOW3.7
libssl3
3.1.4-r5
fixed in 3.1.7-r1
6.0%
Low-Moderate Risk
Directly Exposed
CVE-2024-9143LOW3.7
openssl-dev
3.1.4-r5
fixed in 3.1.7-r1
6.0%
Low-Moderate Risk
Directly Exposed
CVE-2024-4032LOW3.7
python3
3.11.8-r0
fixed in 3.11.10-r0
1.0%
Low-Moderate Risk
Directly Exposed
CVE-2024-4032LOW3.7
python3-pyc
3.11.8-r0
fixed in 3.11.10-r0
1.0%
Low-Moderate Risk
Directly Exposed
CVE-2024-4032LOW3.7
python3-pycache-pyc0
3.11.8-r0
fixed in 3.11.10-r0
1.0%
Low-Moderate Risk
Directly Exposed
CVE-2024-41128LOW3.7
actionpack
7.0.8
fixed in ~> 6.1.7.9, ~> 7.0.8, >= 7.0.8.5, ~> 7.1.4, >= 7.1.4.1, >= 7.2.1.1
1.1%
Low-Moderate Risk
Directly Exposed
CVE-2024-47887LOW3.7
actionpack
7.0.8
fixed in ~> 6.1.7.9, ~> 7.0.8, >= 7.0.8.5, ~> 7.1.4, >= 7.1.4.1, >= 7.2.1.1
1.0%
Low-Moderate Risk
Directly Exposed
CVE-2026-27205LOW3.65
Flask
3.0.2
fixed in 3.1.3
0.4%
Theoretical Threat
Directly Exposed
CVE-2024-54133LOW3.65
actionpack
7.0.8
fixed in ~> 7.0.8, >= 7.0.8.7, ~> 7.1.5, >= 7.1.5.1, ~> 7.2.2, >= 7.2.2.1, >= 8.0.0.1
1.0%
Theoretical Threat
Directly Exposed
CVE-2025-55193LOW3.65
activerecord
7.0.8
fixed in ~> 7.1.5, >= 7.1.5.2, ~> 7.2.2, >= 7.2.2.2, >= 8.0.2.1
0.5%
Theoretical Threat
Directly Exposed
CVE-2024-32021LOW3.62
git
2.40.1-r0
fixed in 2.40.3-r0
1.0%
Theoretical Threat
Post-Exploit
CVE-2024-10978LOW3.57
libecpg
15.6-r0
fixed in 15.9-r0
0.7%
Theoretical Threat
Directly Exposed
CVE-2024-10978LOW3.57
libpq
15.6-r0
fixed in 15.9-r0
0.7%
Theoretical Threat
Directly Exposed
CVE-2025-32441LOW3.57
rack
2.2.8
fixed in >= 2.2.14
0.2%
Theoretical Threat
Directly Exposed
CVE-2024-11053LOW3.54
curl
8.5.0-r0
fixed in 8.11.1-r0
1.4%
Low-Moderate Risk
Post-Exploit
CVE-2024-11053LOW3.54
libcurl
8.5.0-r0
fixed in 8.11.1-r0
1.4%
Low-Moderate Risk
Post-Exploit
CVE-2024-5535LOW3.54
openssl
3.1.4-r5
fixed in 3.1.6-r0
5.6%
Low-Moderate Risk
Post-Exploit
CVE-2024-45491LOW3.53
libexpat
2.6.2-r0
fixed in 2.6.3-r0
1.1%
Low-Moderate Risk
Post-Exploit
CVE-2024-45492LOW3.53
libexpat
2.6.2-r0
fixed in 2.6.3-r0
1.4%
Low-Moderate Risk
Post-Exploit
CVE-2024-6119LOW3.51
openssl-dev
3.1.4-r5
fixed in 3.1.7-r0
66.6%
Actively Exploited
Post-Exploit
CVE-2024-4741LOW3.36
openssl
3.1.4-r5
fixed in 3.1.6-r0
2.9%
Low-Moderate Risk
Post-Exploit
CVE-2024-8096LOW3.31
curl
8.5.0-r0
fixed in 8.10.0-r0
0.7%
Theoretical Threat
Post-Exploit
CVE-2024-8096LOW3.31
libcurl
8.5.0-r0
fixed in 8.10.0-r0
0.7%
Theoretical Threat
Post-Exploit
CVE-2024-2379LOW3.24
curl
8.5.0-r0
fixed in 8.7.1-r0
1.7%
Low-Moderate Risk
Post-Exploit
CVE-2024-2379LOW3.24
libcurl
8.5.0-r0
fixed in 8.7.1-r0
1.7%
Low-Moderate Risk
Post-Exploit
CVE-2024-0853LOW3.18
curl
8.5.0-r0
fixed in 8.6.0-r0
1.1%
Low-Moderate Risk
Post-Exploit
CVE-2024-2466LOW3.18
curl
8.5.0-r0
fixed in 8.7.1-r0
1.3%
Low-Moderate Risk
Post-Exploit
CVE-2024-2004LOW3.18
curl
8.5.0-r0
fixed in 8.7.1-r0
1.7%
Low-Moderate Risk
Post-Exploit
CVE-2024-0853LOW3.18
libcurl
8.5.0-r0
fixed in 8.6.0-r0
1.1%
Low-Moderate Risk
Post-Exploit
CVE-2024-2466LOW3.18
libcurl
8.5.0-r0
fixed in 8.7.1-r0
1.3%
Low-Moderate Risk
Post-Exploit
CVE-2024-2004LOW3.18
libcurl
8.5.0-r0
fixed in 8.7.1-r0
1.7%
Low-Moderate Risk
Post-Exploit
CVE-2024-4603LOW3.18
openssl
3.1.4-r5
fixed in 3.1.5-r0
1.1%
Low-Moderate Risk
Post-Exploit
CVE-2024-10979LOW3.17
libecpg
15.6-r0
fixed in 15.9-r0
4.4%
Low-Moderate Risk
Post-Exploit
CVE-2024-10979LOW3.17
libpq
15.6-r0
fixed in 15.9-r0
4.4%
Low-Moderate Risk
Post-Exploit
CVE-2024-6345LOW3.17
py3-setuptools
67.7.2-r0
fixed in 70.3.0-r0
1.8%
Low-Moderate Risk
Post-Exploit
CVE-2024-6345LOW3.17
py3-setuptools-pyc
67.7.2-r0
fixed in 70.3.0-r0
1.8%
Low-Moderate Risk
Post-Exploit
CVE-2020-36327LOW3.17
bundler
2.1.4
fixed in = 2.2.10, >= 2.2.18
6.3%
Low-Moderate Risk
Post-Exploit
CVE-2024-10977LOW3.15
libecpg
15.6-r0
fixed in 15.9-r0
0.4%
Theoretical Threat
Directly Exposed
CVE-2024-10977LOW3.15
libpq
15.6-r0
fixed in 15.9-r0
0.4%
Theoretical Threat
Directly Exposed
CVE-2024-2398LOW3.1
curl
8.5.0-r0
fixed in 8.7.1-r0
36.1%
High Exploitation Risk
Post-Exploit
CVE-2024-2398LOW3.1
libcurl
8.5.0-r0
fixed in 8.7.1-r0
36.1%
High Exploitation Risk
Post-Exploit
CVE-2024-25126LOW3.1
rack
2.2.8
fixed in ~> 2.2.8, >= 2.2.8.1, >= 3.0.9.1
35.4%
High Exploitation Risk
Post-Exploit
CVE-2024-27280LOW3.1
stringio
3.0.1
fixed in >= 3.0.1.1
2.4%
Low-Moderate Risk
Directly Exposed
CVE-2025-6442LOW3.01
webrick
1.8.1
fixed in >= 1.8.2
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-27459LOW3
pyOpenSSL
24.1.0
fixed in 26.0.0
0.5%
Theoretical Threat
Post-Exploit
CVE-2024-28103LOW3
actionpack
7.0.8
fixed in ~> 6.1.7, >= 6.1.7.8, ~> 7.0.8, >= 7.0.8.4, ~> 7.1.3, >= 7.1.3.4, >= 7.2.0.beta2
0.7%
Theoretical Threat
Post-Exploit
CVE-2026-42257LOW3
net-imap
0.2.3
fixed in ~> 0.4.24, ~> 0.5.14, >= 0.6.4
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-42258LOW3
net-imap
0.2.3
fixed in ~> 0.4.24, ~> 0.5.14, >= 0.6.4
0.9%
Theoretical Threat
Post-Exploit
CVE-2026-42257LOW3
net-imap
0.4.0
fixed in ~> 0.4.24, ~> 0.5.14, >= 0.6.4
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-42258LOW3
net-imap
0.4.0
fixed in ~> 0.4.24, ~> 0.5.14, >= 0.6.4
0.9%
Theoretical Threat
Post-Exploit
CVE-2026-6357LOW2.96
pip
24.0
fixed in 26.1
0.1%
Theoretical Threat
Post-Exploit
CVE-2024-2511LOW2.89
openssl
3.1.4-r5
fixed in 3.1.4-r6
54.0%
Actively Exploited
Post-Exploit
CVE-2024-32004LOW2.81
git
2.40.1-r0
fixed in 2.40.3-r0
1.3%
Low-Moderate Risk
Post-Exploit
CVE-2023-42363LOW2.8
busybox
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42364LOW2.8
busybox
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42365LOW2.8
busybox
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42366LOW2.8
busybox
1.36.1-r5
fixed in 1.36.1-r6
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42363LOW2.8
busybox-binsh
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42364LOW2.8
busybox-binsh
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42365LOW2.8
busybox-binsh
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42366LOW2.8
busybox-binsh
1.36.1-r5
fixed in 1.36.1-r6
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42363LOW2.8
ssl_client
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42364LOW2.8
ssl_client
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42365LOW2.8
ssl_client
1.36.1-r5
fixed in 1.36.1-r7
0.4%
Theoretical Threat
Post-Exploit
CVE-2023-42366LOW2.8
ssl_client
1.36.1-r5
fixed in 1.36.1-r6
0.4%
Theoretical Threat
Post-Exploit
CVE-2026-24049LOW2.8
wheel
0.43.0
fixed in 0.46.2
0.3%
Theoretical Threat
Post-Exploit
CVE-2024-45614LOW2.75
puma
6.4.0
fixed in ~> 5.6.9, >= 6.4.3
0.7%
Theoretical Threat
Post-Exploit
CVE-2024-6197LOW2.7
curl
8.5.0-r0
fixed in 8.9.0-r0
4.3%
Low-Moderate Risk
Post-Exploit
CVE-2024-52006LOW2.7
git
2.40.1-r0
fixed in 2.40.4-r0
1.0%
Low-Moderate Risk
Post-Exploit
CVE-2024-34069LOW2.7
Werkzeug
3.0.1
fixed in 3.0.3
3.4%
Low-Moderate Risk
Post-Exploit
CVE-2024-3651LOW2.7
idna
3.6
fixed in 3.7
1.1%
Low-Moderate Risk
Post-Exploit
CVE-2024-26141LOW2.7
rack
2.2.8
fixed in ~> 2.2.8, >= 2.2.8.1, >= 3.0.9.1
1.6%
Low-Moderate Risk
Post-Exploit
CVE-2024-26146LOW2.7
rack
2.2.8
fixed in ~> 2.0.9, >= 2.0.9.4, ~> 2.1.4, >= 2.1.4.4, ~> 2.2.8, >= 2.2.8.1, >= 3.0.9.1
2.0%
Low-Moderate Risk
Post-Exploit
CVE-2025-8869LOW2.7
pip
24.0
fixed in 25.3
0.4%
Theoretical Threat
Post-Exploit
CVE-2024-27281LOW2.7
rdoc
6.4.0
fixed in ~> 6.3.4, >= 6.3.4.1, ~> 6.4.1, >= 6.4.1.1, >= 6.5.1.1
1.6%
Low-Moderate Risk
Post-Exploit
CVE-2026-3219LOW2.55
pip
24.0
fixed in 26.1
0.1%
Theoretical Threat
Post-Exploit
CVE-2024-50349LOW2.4
git
2.40.1-r0
fixed in 2.40.4-r0
0.6%
Theoretical Threat
Post-Exploit
CVE-2024-13176LOW2.4
openssl
3.1.4-r5
fixed in 3.1.8-r0
0.6%
Theoretical Threat
Post-Exploit
CVE-2025-0665LOW2.4
curl
8.5.0-r0
fixed in 8.12.0-r0
1.2%
Low-Moderate Risk
Post-Exploit
CVE-2025-0725LOW2.4
curl
8.5.0-r0
fixed in 8.12.0-r0
1.2%
Low-Moderate Risk
Post-Exploit
CVE-2025-0665LOW2.4
libcurl
8.5.0-r0
fixed in 8.12.0-r0
1.2%
Low-Moderate Risk
Post-Exploit
CVE-2025-0725LOW2.4
libcurl
8.5.0-r0
fixed in 8.12.0-r0
1.2%
Low-Moderate Risk
Post-Exploit
CVE-2025-54314LOW2.38
thor
1.2.2
fixed in >= 1.4.0
0.1%
Theoretical Threat
Directly Exposed
CVE-2024-9143LOW2.22
openssl
3.1.4-r5
fixed in 3.1.7-r1
6.0%
Low-Moderate Risk
Post-Exploit
CVE-2024-6874LOW2.19
curl
8.5.0-r0
fixed in 8.9.0-r0
0.8%
Theoretical Threat
Post-Exploit
CVE-2024-6874LOW2.19
libcurl
8.5.0-r0
fixed in 8.9.0-r0
0.8%
Theoretical Threat
Post-Exploit
CVE-2026-1703LOW1.99
pip
24.0
fixed in 26.0
0.4%
Theoretical Threat
Post-Exploit
CVE-2024-32020LOW1.68
git
2.40.1-r0
fixed in 2.40.3-r0
0.5%
Theoretical Threat
Post-Exploit
CVE-2025-68121NONE0
stdlib
v1.21.1
fixed in 1.24.13, 1.25.7, 1.26.0-rc.3
0.8%
Theoretical Threat
Not Applicable
CVE-2024-24790NONE0
stdlib
v1.21.1
fixed in 1.21.11, 1.22.4
2.0%
Low-Moderate Risk
Not Applicable
CVE-2023-39325NONE0
stdlib
v1.21.1
fixed in 1.20.10, 1.21.3
3.8%
Low-Moderate Risk
Not Applicable
CVE-2023-45283NONE0
stdlib
v1.21.1
fixed in 1.20.11, 1.21.4, 1.20.12, 1.21.5
2.8%
Low-Moderate Risk
Not Applicable
CVE-2023-45288NONE0
stdlib
v1.21.1
fixed in 1.21.9, 1.22.2
92.0%
Actively Exploited
Not Applicable
CVE-2024-34156NONE0
stdlib
v1.21.1
fixed in 1.22.7, 1.23.1
1.1%
Low-Moderate Risk
Not Applicable
CVE-2025-61726NONE0
stdlib
v1.21.1
fixed in 1.24.12, 1.25.6
0.8%
Theoretical Threat
Not Applicable
CVE-2025-61729NONE0
stdlib
v1.21.1
fixed in 1.24.11, 1.25.5
0.5%
Theoretical Threat
Not Applicable
CVE-2026-25679NONE0
stdlib
v1.21.1
fixed in 1.25.8, 1.26.1
0.5%
Theoretical Threat
Not Applicable
CVE-2026-32280NONE0
stdlib
v1.21.1
fixed in 1.25.9, 1.26.2
0.4%
Theoretical Threat
Not Applicable
CVE-2026-32281NONE0
stdlib
v1.21.1
fixed in 1.25.9, 1.26.2
0.3%
Theoretical Threat
Not Applicable
CVE-2026-32283NONE0
stdlib
v1.21.1
fixed in 1.25.9, 1.26.2
0.4%
Theoretical Threat
Not Applicable
CVE-2026-33811NONE0
stdlib
v1.21.1
fixed in 1.25.10, 1.26.3
0.5%
Theoretical Threat
Not Applicable
CVE-2026-33814NONE0
stdlib
v1.21.1
fixed in 1.25.10, 1.26.3
0.6%
Theoretical Threat
Not Applicable
CVE-2026-39820NONE0
stdlib
v1.21.1
fixed in 1.25.10, 1.26.3
0.4%
Theoretical Threat
Not Applicable
CVE-2026-39836NONE0
stdlib
v1.21.1
fixed in 1.25.10, 1.26.3
0.6%
Theoretical Threat
Not Applicable
CVE-2025-58183NONE0
stdlib
v1.21.1
fixed in 1.24.8, 1.25.2
0.4%
Theoretical Threat
Not Applicable
CVE-2025-61728NONE0
stdlib
v1.21.1
fixed in 1.24.12, 1.25.6
0.6%
Theoretical Threat
Not Applicable
CVE-2025-47907NONE0
stdlib
v1.21.1
fixed in 1.23.12, 1.24.6
0.3%
Theoretical Threat
Not Applicable
CVE-2025-4673NONE0
stdlib
v1.21.1
fixed in 1.23.10, 1.24.4
0.6%
Theoretical Threat
Not Applicable
CVE-2024-24785NONE0
stdlib
v1.21.1
fixed in 1.21.8, 1.22.1
0.8%
Theoretical Threat
Not Applicable
CVE-2025-47906NONE0
stdlib
v1.21.1
fixed in 1.23.12, 1.24.6
0.5%
Theoretical Threat
Not Applicable
CVE-2025-61727NONE0
stdlib
v1.21.1
fixed in 1.24.11, 1.25.5
0.3%
Theoretical Threat
Not Applicable
CVE-2026-32282NONE0
stdlib
v1.21.1
fixed in 1.25.9, 1.26.2
0.3%
Theoretical Threat
Not Applicable
CVE-2026-32289NONE0
stdlib
v1.21.1
fixed in 1.25.9, 1.26.2
0.3%
Theoretical Threat
Not Applicable
CVE-2024-24783NONE0
stdlib
v1.21.1
fixed in 1.21.8, 1.22.1
0.7%
Theoretical Threat
Not Applicable
CVE-2024-24791NONE0
stdlib
v1.21.1
fixed in 1.21.12, 1.22.5
1.4%
Low-Moderate Risk
Not Applicable
CVE-2024-34155NONE0
stdlib
v1.21.1
fixed in 1.22.7, 1.23.1
0.8%
Theoretical Threat
Not Applicable
CVE-2024-34158NONE0
stdlib
v1.21.1
fixed in 1.22.7, 1.23.1
1.0%
Low-Moderate Risk
Not Applicable
CVE-2024-45336NONE0
stdlib
v1.21.1
fixed in 1.22.11, 1.23.5, 1.24.0-rc.2
0.6%
Theoretical Threat
Not Applicable
CVE-2024-24789NONE0
stdlib
v1.21.1
fixed in 1.21.11, 1.22.4
0.4%
Theoretical Threat
Not Applicable
CVE-2026-32288NONE0
stdlib
v1.21.1
fixed in 1.25.9, 1.26.2
0.3%
Theoretical Threat
Not Applicable
CVE-2024-24784NONE0
stdlib
v1.21.1
fixed in 1.21.8, 1.22.1
1.0%
Low-Moderate Risk
Not Applicable
CVE-2025-22871NONE0
stdlib
v1.21.1
fixed in 1.23.8, 1.24.2
0.7%
Theoretical Threat
Not Applicable
CVE-2026-27142NONE0
stdlib
v1.21.1
fixed in 1.25.8, 1.26.1
0.3%
Theoretical Threat
Not Applicable
CVE-2026-39826NONE0
stdlib
v1.21.1
fixed in 1.25.10, 1.26.3
0.4%
Theoretical Threat
Not Applicable
CVE-2023-39326NONE0
stdlib
v1.21.1
fixed in 1.20.12, 1.21.5
1.2%
Low-Moderate Risk
Not Applicable
CVE-2023-45284NONE0
stdlib
v1.21.1
fixed in 1.20.11, 1.21.4
0.9%
Theoretical Threat
Not Applicable
CVE-2023-45289NONE0
stdlib
v1.21.1
fixed in 1.21.8, 1.22.1
1.1%
Low-Moderate Risk
Not Applicable
CVE-2023-45290NONE0
stdlib
v1.21.1
fixed in 1.21.8, 1.22.1
1.2%
Low-Moderate Risk
Not Applicable
CVE-2025-22866NONE0
stdlib
v1.21.1
fixed in 1.22.12, 1.23.6, 1.24.0-rc.3
0.3%
Theoretical Threat
Not Applicable
CVE-2025-22873NONE0
stdlib
v1.21.1
fixed in 1.23.9, 1.24.3
0.2%
Theoretical Threat
Not Applicable
CVE-2025-47912NONE0
stdlib
v1.21.1
fixed in 1.24.8, 1.25.2
0.4%
Theoretical Threat
Not Applicable
CVE-2025-58185NONE0
stdlib
v1.21.1
fixed in 1.24.8, 1.25.2
0.5%
Theoretical Threat
Not Applicable
CVE-2025-58187NONE0
stdlib
v1.21.1
fixed in 1.24.9, 1.25.3
0.4%
Theoretical Threat
Not Applicable
CVE-2025-58188NONE0
stdlib
v1.21.1
fixed in 1.24.8, 1.25.2
0.3%
Theoretical Threat
Not Applicable
CVE-2025-58189NONE0
stdlib
v1.21.1
fixed in 1.24.8, 1.25.2
0.4%
Theoretical Threat
Not Applicable
CVE-2025-61723NONE0
stdlib
v1.21.1
fixed in 1.24.8, 1.25.2
0.6%
Theoretical Threat
Not Applicable
CVE-2025-61724NONE0
stdlib
v1.21.1
fixed in 1.24.8, 1.25.2
0.5%
Theoretical Threat
Not Applicable
CVE-2025-61725NONE0
stdlib
v1.21.1
fixed in 1.24.8, 1.25.2
0.6%
Theoretical Threat
Not Applicable
CVE-2025-61730NONE0
stdlib
v1.21.1
fixed in 1.24.12, 1.25.6
0.3%
Theoretical Threat
Not Applicable
CVE-2025-58186NONE0
stdlib
v1.21.1
fixed in 1.24.8, 1.25.2
0.5%
Theoretical Threat
Not Applicable
CVE-2025-22870NONE0
stdlib
v1.21.1
fixed in 1.23.7, 1.24.1
0.4%
Theoretical Threat
Not Applicable
CVE-2024-45341NONE0
stdlib
v1.21.1
fixed in 1.22.11, 1.23.5, 1.24.0-rc.2
0.4%
Theoretical Threat
Not Applicable
CVE-2026-27139NONE0
stdlib
v1.21.1
fixed in 1.25.8, 1.26.1
0.2%
Theoretical Threat
Not Applicable
CVE-2025-0167NONE0
curl
8.5.0-r0
fixed in 8.12.0-r0
0.6%
Theoretical Threat
Not Applicable
CVE-2025-0167NONE0
libcurl
8.5.0-r0
fixed in 8.12.0-r0
0.6%
Theoretical Threat
Not Applicable
GHSA-537c-gmf6-5ccfNONE0
cryptography
42.0.5
fixed in 48.0.1
Not Applicable
GHSA-h4gh-qq45-vh27NONE0
cryptography
42.0.5
fixed in 43.0.1
Not Applicable
CVE-2026-47240NONE0
net-imap
0.2.3
fixed in ~> 0.5.15, >= 0.6.4.1
Not Applicable
CVE-2026-47242NONE0
net-imap
0.2.3
fixed in ~> 0.5.15, >= 0.6.4.1
Not Applicable
CVE-2026-47241NONE0
net-imap
0.2.3
fixed in ~> 0.5.15, >= 0.6.4.1
Not Applicable
CVE-2026-47240NONE0
net-imap
0.4.0
fixed in ~> 0.5.15, >= 0.6.4.1
Not Applicable
CVE-2026-47242NONE0
net-imap
0.4.0
fixed in ~> 0.5.15, >= 0.6.4.1
Not Applicable
CVE-2026-47241NONE0
net-imap
0.4.0
fixed in ~> 0.5.15, >= 0.6.4.1
Not Applicable
GHSA-353f-x4gh-cqq8NONE0
nokogiri
1.14.5
fixed in >= 1.18.9
Not Applicable
GHSA-c4rq-3m3g-8wgxNONE0
nokogiri
1.14.5
fixed in >= 1.19.3
Not Applicable
GHSA-mrxw-mxhj-p664NONE0
nokogiri
1.14.5
fixed in >= 1.18.4
Not Applicable
GHSA-v2fc-qm4h-8hqvNONE0
nokogiri
1.14.5
fixed in >= 1.19.3
Not Applicable
GHSA-wx95-c6cv-8532NONE0
nokogiri
1.14.5
fixed in >= 1.19.1
Not Applicable
GHSA-xc9x-jj77-9p9jNONE0
nokogiri
1.14.5
fixed in ~> 1.15.6, >= 1.16.2
Not Applicable
GHSA-5w6v-399v-w3ccNONE0
nokogiri
1.14.5
fixed in >= 1.18.8
Not Applicable
GHSA-r95h-9x8f-r3f7NONE0
nokogiri
1.14.5
fixed in >= 1.16.5
Not Applicable
GHSA-vvfq-8hwr-qm4mNONE0
nokogiri
1.14.5
fixed in >= 1.18.3
Not Applicable
CVE-2026-47736NONE0
puma
6.4.0
fixed in ~> 7.2.1, >= 8.0.2
Not Applicable
CVE-2026-47737NONE0
puma
6.4.0
fixed in ~> 7.2.1, >= 8.0.2
Not Applicable
CVE-2026-39823NONE0
stdlib
v1.21.1
fixed in 1.25.10, 1.26.3
0.3%
Theoretical Threat
Not Applicable
CVE-2026-39825NONE0
stdlib
v1.21.1
fixed in 1.25.10, 1.26.3
0.4%
Theoretical Threat
Not Applicable
CVE-2026-42499NONE0
stdlib
v1.21.1
fixed in 1.25.10, 1.26.3
0.6%
Theoretical Threat
Not Applicable
CVE-2026-42504NONE0
stdlib
v1.21.1
fixed in 1.25.11, 1.26.4
0.4%
Theoretical Threat
Not Applicable
CVE-2025-0913NONE0
stdlib
v1.21.1
fixed in 1.23.10, 1.24.4
0.2%
Theoretical Threat
Not Applicable
CVE-2026-27145NONE0
stdlib
v1.21.1
fixed in 1.25.11, 1.26.4
0.3%
Theoretical Threat
Not Applicable
CVE-2026-42507NONE0
stdlib
v1.21.1
fixed in 1.25.11, 1.26.4
0.3%
Theoretical Threat
Not Applicable