VDB
CVE-2025-54572
CVE-2025-54572
PUBLISHED
CVSS 8.699999809265137 HIGH
Ruby ist eine interpretierte, objektorientierte Skriptsprache.
EPSS 0.58% · 69.2th percentile
Risk Scores
CVSS v4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
EPSS Score
0.58%
69.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Open Source | Open Source Ruby saml <1.18.1 | |
| Debian | Debian Linux |
Timeline
- Jul 30, 2025 CVE Published
- Jul 31, 2025 EPSS Score
- Aug 9, 2025 EPSS Score
- Aug 17, 2025 EPSS Score
- Aug 26, 2025 EPSS Score
- Sep 4, 2025 EPSS Score
- Sep 12, 2025 EPSS Score
- Sep 21, 2025 EPSS Score
- Sep 30, 2025 EPSS Score
- Oct 9, 2025 EPSS Score
- Oct 17, 2025 EPSS Score
- Oct 26, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1686.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1686 advisory
- https://github.com/advisories/GHSA-rrqh-93c8-j966 advisory
- https://lists.debian.org/debian-lts-announce/2025/09/msg00001.html advisory