Vulnerabilities > CVE-2025-27220 - Unspecified vulnerability in Ruby-Lang CGI 0.3.6
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 4 |