EPSS
Percentile
78.5%
Ruby is vulnerable to cross site scripting (XSS). This occurs in the homepage attribute when victim browse a malicious gem on a vulnerable gem server.
access.redhat.com/errata/RHSA-2018:3729
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=1650591