EPSS
Percentile
75.6%
ruby is vulnerable to denial of service. The vulnerability exists due to a Double free in Regexp compilation which allows an attacker to crash the application via malicious input.
hackerone.com/reports/1220911
secdb.alpinelinux.org/edge/main.yaml
secdb.alpinelinux.org/v3.15/main.yaml
security-tracker.debian.org/tracker/CVE-2022-28738
security.netapp.com/advisory/ntap-20220624-0002/
www.ruby-lang.org/en/news/2022/04/12/double-free-in-regexp-compilation-cve-2022-28738/