CVE-2025-27219 | CGI Gem up to 0.3.6/0.4.1 on Ruby Cookie CGI::Cookie.parse allocation of resources

Posted by Angelo Barbosa | Mar 4, 2025 | CVE

A vulnerability was found in CGI Gem up to 0.3.6/0.4.1 on Ruby. It has been declared as problematic. Affected by this vulnerability is the function CGI::Cookie.parse of the component Cookie Handler. The manipulation leads to allocation of resources.

This vulnerability is known as CVE-2025-27219. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-27219 | CGI Gem up to 0.3.6/0.4.1 on Ruby Cookie CGI::Cookie.parse allocation of resources

Related Posts

CVE-2025-1843 | Mini-Tmall up to 20250211 ProductMapper.java select orderBy sql injection

CVE-2024-6746 | NaiboWang EasySpider 0.6.2 on Windows HTTP GET Request server.js path traversal (Issue 466)

CVE-2024-47951 | JetBrains TeamCity up to 2024.07.1 Server Global Settings cross site scripting

CVE-2024-50357 | Century Systems FutureNet NXR-G050 up to firmware versions 21.15.7/later but 21.15.8 REST-API incorrect provision of specified functionality