Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
onigmo vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-16162
Onigmo up to and including 6.2.0 has an out-of-bounds read in parse_char_class because of missing codepoint validation in regenc.c.
K-takata Onigmo
7.5
CVSSv3
CVE-2019-16161
Onigmo up to and including 6.2.0 has a NULL pointer dereference in onig_error_code_to_str because of fetch_token in regparse.c.
K-takata Onigmo
7.5
CVSSv3
CVE-2017-6181
The parse_char_class function in regparse.c in the Onigmo (aka Oniguruma-mod) regular expression library, as used in Ruby 2.4.0, allows remote malicious users to cause a denial of service (deep recursion and application crash) via a crafted regular expression.
Ruby-lang Ruby 2.4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32744
privilege escalation
CVE-2024-30253
CVE-2024-3914
cross-site scripting
CVE-2024-31497
CVE-2024-3400
CVE-2024-32341
hardcoded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started