CVE-2026-54905 | ruby-concurrency concurrent-ruby up to 1.3.6 ReentrantReadWriteLock wrap-around

Inserito da Angelo Barbosa | Giu 24, 2026 | CVE

A vulnerability identified as problematic has been detected in ruby-concurrency concurrent-ruby up to 1.3.6. The affected element is the function Concurrent::ReentrantReadWriteLock. This manipulation causes wrap-around error.

This vulnerability is handled as CVE-2026-54905. It is possible to launch the attack on the local host. There is not any exploit available.

You should upgrade the affected component.

CVE-2026-54905 | ruby-concurrency concurrent-ruby up to 1.3.6 ReentrantReadWriteLock wrap-around

Post correlati

CVE-2023-41973 | Zscaler Client Connector prior 4.3.0.121 on Windows ZSATray previousInstallerName path traversal

CVE-2025-41438 | Consilium Safety CS5000 Fire Panel insecure default initialization of resource (icsa-25-148-03)

CVE-2024-49677 | David Cramer Bootstrap Buttons Plugin up to 1.2 on WordPress cross site scripting

CVE-2024-10044 | lm-sys fastchat API Endpoint /worker_generate_stream server-side request forgery