VDB
CVE-2021-41817
CVE-2021-41817
PUBLISHED
EPSS 0.49% · 66.2th percentile
Risk Scores
EPSS Score
0.49%
66.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Amazon | ruby |
Exploit Intelligence
- https://www.ruby-lang.org/en/news/2021/11/15/date-parsing-method-regexp-dos-cve-2021-41817/ (nist-nvd)
- Ruby - Regular Expression Denial of Service Vulnerability of Date Parsing Methods (hackerone)
- Ruby - Regular Expression Denial of Service Vulnerability of Date Parsing Methods (hackerone)
- Ruby - Regular Expression Denial of Service Vulnerability of Date Parsing Methods (hackerone)
- FEDORA-2022-82a9edac27 (circl)
- FEDORA-2022-8cf0124add (circl)
- GLSA-202401-27 (circl)
- https://hackerone.com/reports/1254844 (bitnami)
Timeline
- CVE Published
- Nov 19, 2021 PoC Published
- Jan 1, 2022 EPSS Score
- Feb 24, 2022 EPSS Score
- Apr 19, 2022 EPSS Score
- Jun 11, 2022 EPSS Score
- Aug 5, 2022 EPSS Score
- Nov 21, 2022 EPSS Score
- Jan 13, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 8, 2023 EPSS Score
- May 1, 2023 EPSS Score
References
- ALAS2-2023-2345: ruby (medium) advisory
- ALAS2RUBY3.0-2023-003: ruby (important) advisory
- ALAS2RUBY2.6-2023-002: ruby (medium) advisory