Vulnerabilities > Oniguruma Project > Oniguruma > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-07-10 CVE-2019-13225 NULL Pointer Dereference vulnerability in multiple products
A NULL Pointer Dereference in match_at() in regexec.c in Oniguruma 6.9.2 allows attackers to potentially cause denial of service by providing a crafted regular expression.
network
low complexity
oniguruma-project fedoraproject CWE-476
6.5
2017-05-24 CVE-2017-9229 NULL Pointer Dereference vulnerability in multiple products
An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5.
network
low complexity
oniguruma-project ruby-lang php CWE-476
5.0