Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
onigmo vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-16161
Onigmo up to and including 6.2.0 has a NULL pointer dereference in onig_error_code_to_str because of fetch_token in regparse.c.
K-takata Onigmo
5
CVSSv2
CVE-2019-16162
Onigmo up to and including 6.2.0 has an out-of-bounds read in parse_char_class because of missing codepoint validation in regenc.c.
K-takata Onigmo
5
CVSSv2
CVE-2017-6181
The parse_char_class function in regparse.c in the Onigmo (aka Oniguruma-mod) regular expression library, as used in Ruby 2.4.0, allows remote malicious users to cause a denial of service (deep recursion and application crash) via a crafted regular expression.
Ruby-lang Ruby 2.4.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
client side
CVE-2023-31889
template injection
CVE-2024-4304
CVE-2006-4304
CVE-2024-33272
type confusion
CVE-2024-21345
CVE-2024-33271
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started