[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2008-2726":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":19,"duplicate_of":9,"upstream":20,"downstream":21,"duplicates":36,"related":39,"reserved_at":9,"published_at":40,"modified_at":41,"state":42,"summary":43,"references_raw":52,"kevs":252,"epss":253,"epss_history":256,"metrics":511,"affected":516},"CVE-2008-2726","Integer overflow in the (1) rb_ary_splice function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2; and (2) the rb_ary_replace function in 1.6.x allows context-dependent attackers to trigger memory corruption, aka the \"beg + rlen\" issue.  NOTE: as of 20080624, there has been inconsistent usage of multiple CVE identifiers related to Ruby. The CVE description should be regarded as authoritative, although it is likely to change.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"CWE-189","Numeric Errors","Weaknesses in this category are related to improper calculation or conversion of numbers.","category","Draft",[],[],[],[],[22,24,26,28,30,32,34],{"_key":23},"DSA-1612-1",{"_key":25},"DSA-1618-1",{"_key":27},"RHSA-2008:0561",{"_key":29},"RHSA-2008:0562",{"_key":31},"RHSA-2026:7305",{"_key":33},"RHSA-2026:7307",{"_key":35},"RHSA-2026:8838",[37],{"_key":38},"CVE-2008-2728",[],"2008-06-24T19:00:00.000Z","2024-08-07T09:14:14.543Z","Modified",{"cisa_kev":44,"cisa_ransomware":44,"cisa_vendor":9,"epss_severity":45,"epss_score":46,"severity":47,"severity_score":48,"severity_version":49,"severity_source":50,"severity_vector":51,"severity_status":42},false,"low",0.02611,"high",7.8,"v2.0","nvd","AV:N/AC:L/Au:N/C:N/I:N/A:C",[53,61,66,71,76,81,85,91,96,100,105,109,113,117,121,127,131,136,141,146,150,155,160,164,169,173,177,181,187,191,196,200,204,209,213,218,222,226,230,235,239,243,248],{"url":54,"sources":55,"tags":57},"http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html",[56,50],"cve.org",[58,59,60],"Vendor Advisory","X Refsource SUSE","Third Party Advisory",{"url":62,"sources":63,"tags":64},"http://support.apple.com/kb/HT2163",[56,50],[65,60],"X Refsource CONFIRM",{"url":67,"sources":68,"tags":69},"http://secunia.com/advisories/31090",[56,50],[60,70],"X Refsource SECUNIA",{"url":72,"sources":73,"tags":74},"http://weblog.rubyonrails.org/2008/6/21/multiple-ruby-security-vulnerabilities",[56,50],[75,60],"X Refsource MISC",{"url":77,"sources":78,"tags":79},"http://www.mandriva.com/security/advisories?name=MDVSA-2008:141",[56,50],[58,80,60],"X Refsource MANDRIVA",{"url":82,"sources":83,"tags":84},"http://secunia.com/advisories/30875",[56,50],[60,70],{"url":86,"sources":87,"tags":88},"http://www.vupen.com/english/advisories/2008/1981/references",[56,50],[89,90,60],"VDB Entry","X Refsource VUPEN",{"url":92,"sources":93,"tags":94},"https://exchange.xforce.ibmcloud.com/vulnerabilities/43351",[56,50],[89,95,60],"X Refsource XF",{"url":97,"sources":98,"tags":99},"http://www.vupen.com/english/advisories/2008/1907/references",[56,50],[89,90,60],{"url":101,"sources":102,"tags":103},"http://www.debian.org/security/2008/dsa-1618",[56,50],[58,104,60],"X Refsource DEBIAN",{"url":106,"sources":107,"tags":108},"http://secunia.com/advisories/31687",[56,50],[60,70],{"url":110,"sources":111,"tags":112},"http://secunia.com/advisories/30894",[56,50],[60,70],{"url":114,"sources":115,"tags":116},"http://secunia.com/advisories/31062",[56,50],[60,70],{"url":118,"sources":119,"tags":120},"http://secunia.com/advisories/31256",[56,50],[60,70],{"url":122,"sources":123,"tags":124},"http://www.securityfocus.com/archive/1/493688/100/0/threaded",[56,50],[125,126,60,89],"Mailing List","X Refsource BUGTRAQ",{"url":128,"sources":129,"tags":130},"http://www.matasano.com/log/1070/updates-on-drew-yaos-terrible-ruby-vulnerabilities/",[56,50],[75,60],{"url":132,"sources":133,"tags":134},"http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.429562",[56,50],[58,135,60],"X Refsource SLACKWARE",{"url":137,"sources":138,"tags":139},"http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html",[56,50],[58,140,125,60],"X Refsource APPLE",{"url":142,"sources":143,"tags":144},"http://www.securitytracker.com/id?1020347",[56,50],[89,145,60],"X Refsource SECTRACK",{"url":147,"sources":148,"tags":149},"http://www.rubyinside.com/june-2008-ruby-security-vulnerabilities-927.html",[56,50],[75,60],{"url":151,"sources":152,"tags":153},"http://www.redhat.com/archives/fedora-security-commits/2008-June/msg00005.html",[56,50],[125,154,60],"X Refsource MLIST",{"url":156,"sources":157,"tags":158},"http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0206",[56,50],[65,159],"Broken Link",{"url":161,"sources":162,"tags":163},"https://bugs.launchpad.net/ubuntu/+source/ruby1.8/+bug/241657",[56,50],[65,60],{"url":165,"sources":166,"tags":167},"https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00937.html",[56,50],[58,168,60],"X Refsource FEDORA",{"url":170,"sources":171,"tags":172},"http://www.mandriva.com/security/advisories?name=MDVSA-2008:140",[56,50],[58,80,60],{"url":174,"sources":175,"tags":176},"http://secunia.com/advisories/30802",[56,50],[60,70],{"url":178,"sources":179,"tags":180},"http://secunia.com/advisories/30831",[56,50],[60,70],{"url":182,"sources":183,"tags":184},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9959",[56,50],[89,185,186,60],"Signature","X Refsource OVAL",{"url":188,"sources":189,"tags":190},"http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=rev&revision=17460",[56,50],[65,58],{"url":192,"sources":193,"tags":194},"http://www.redhat.com/support/errata/RHSA-2008-0561.html",[56,50],[58,195,60],"X Refsource REDHAT",{"url":197,"sources":198,"tags":199},"https://issues.rpath.com/browse/RPL-2626",[56,50],[65,159],{"url":201,"sources":202,"tags":203},"http://www.debian.org/security/2008/dsa-1612",[56,50],[58,104,60],{"url":205,"sources":206,"tags":207},"http://security.gentoo.org/glsa/glsa-200812-17.xml",[56,50],[58,208,60],"X Refsource GENTOO",{"url":210,"sources":211,"tags":212},"http://secunia.com/advisories/33178",[56,50],[60,70],{"url":214,"sources":215,"tags":216},"http://www.securityfocus.com/bid/29903",[56,50],[89,217,60],"X Refsource BID",{"url":219,"sources":220,"tags":221},"http://www.zedshaw.com/rants/the_big_ruby_vulnerabilities.html",[56,50],[75,159],{"url":223,"sources":224,"tags":225},"http://secunia.com/advisories/30867",[56,50],[60,70],{"url":227,"sources":228,"tags":229},"http://www.mandriva.com/security/advisories?name=MDVSA-2008:142",[56,50],[58,80,60],{"url":231,"sources":232,"tags":233},"http://www.ruby-lang.org/en/news/2008/06/20/arbitrary-code-execution-vulnerabilities/",[56,50],[65,234,58],"Patch",{"url":236,"sources":237,"tags":238},"http://www.ruby-forum.com/topic/157034",[56,50],[75,60],{"url":240,"sources":241,"tags":242},"http://blog.phusion.nl/2008/06/23/ruby-186-p230187-broke-your-app-ruby-enterprise-edition-to-the-rescue/",[56,50],[75,60],{"url":244,"sources":245,"tags":246},"http://www.ubuntu.com/usn/usn-621-1",[56,50],[58,247,60],"X Refsource UBUNTU",{"url":249,"sources":250,"tags":251},"http://secunia.com/advisories/31181",[56,50],[60,70],[],{"date":254,"score":46,"percentile":255},"2026-06-04",0.85925,[257,261,264,267,270,273,275,278,281,284,287,290,293,296,298,301,304,307,310,313,315,317,319,322,324,327,330,334,337,340,343,346,349,351,354,356,359,362,365,368,371,374,377,380,383,386,389,392,394,397,399,402,405,408,412,415,418,421,424,427,430,432,435,437,439,441,444,446,448,450,453,456,459,462,465,468,471,474,477,479,482,485,488,491,494,496,499,502,505,508],{"date":258,"score":259,"percentile":260},"2025-11-04",0.02313,0.84222,{"date":262,"score":259,"percentile":263},"2025-11-05",0.84226,{"date":265,"score":259,"percentile":266},"2025-11-06",0.84231,{"date":268,"score":259,"percentile":269},"2025-11-07",0.84236,{"date":271,"score":259,"percentile":272},"2025-11-08",0.84242,{"date":274,"score":259,"percentile":269},"2025-11-09",{"date":276,"score":259,"percentile":277},"2025-11-10",0.84232,{"date":279,"score":259,"percentile":280},"2025-11-11",0.84238,{"date":282,"score":259,"percentile":283},"2025-11-12",0.84247,{"date":285,"score":259,"percentile":286},"2025-11-13",0.84254,{"date":288,"score":259,"percentile":289},"2025-11-14",0.84255,{"date":291,"score":259,"percentile":292},"2025-11-15",0.84248,{"date":294,"score":259,"percentile":295},"2025-11-16",0.84249,{"date":297,"score":259,"percentile":283},"2025-11-17",{"date":299,"score":259,"percentile":300},"2025-11-18",0.8343,{"date":302,"score":259,"percentile":303},"2025-11-19",0.83432,{"date":305,"score":259,"percentile":306},"2025-11-20",0.83438,{"date":308,"score":259,"percentile":309},"2025-11-21",0.8426,{"date":311,"score":259,"percentile":312},"2025-11-22",0.84258,{"date":314,"score":259,"percentile":292},"2025-11-23",{"date":316,"score":259,"percentile":283},"2025-11-24",{"date":318,"score":259,"percentile":295},"2025-11-25",{"date":320,"score":259,"percentile":321},"2025-11-26",0.8425,{"date":323,"score":259,"percentile":292},"2025-11-27",{"date":325,"score":259,"percentile":326},"2025-11-28",0.8423,{"date":328,"score":259,"percentile":329},"2025-11-29",0.84263,{"date":331,"score":332,"percentile":333},"2025-11-30",0.02858,0.85787,{"date":335,"score":332,"percentile":336},"2025-12-01",0.85841,{"date":338,"score":332,"percentile":339},"2025-12-02",0.85844,{"date":341,"score":332,"percentile":342},"2025-12-03",0.85845,{"date":344,"score":332,"percentile":345},"2025-12-04",0.85789,{"date":347,"score":332,"percentile":348},"2025-12-05",0.85791,{"date":350,"score":332,"percentile":333},"2025-12-06",{"date":352,"score":332,"percentile":353},"2025-12-07",0.85776,{"date":355,"score":332,"percentile":353},"2025-12-08",{"date":357,"score":332,"percentile":358},"2025-12-09",0.85786,{"date":360,"score":332,"percentile":361},"2025-12-10",0.85806,{"date":363,"score":332,"percentile":364},"2025-12-11",0.85812,{"date":366,"score":332,"percentile":367},"2025-12-12",0.85813,{"date":369,"score":332,"percentile":370},"2025-12-13",0.85808,{"date":372,"score":332,"percentile":373},"2025-12-14",0.85797,{"date":375,"score":332,"percentile":376},"2025-12-15",0.85792,{"date":378,"score":332,"percentile":379},"2025-12-16",0.85798,{"date":381,"score":332,"percentile":382},"2025-12-17",0.85804,{"date":384,"score":332,"percentile":385},"2025-12-18",0.8581,{"date":387,"score":332,"percentile":388},"2025-12-19",0.85814,{"date":390,"score":332,"percentile":391},"2025-12-20",0.85811,{"date":393,"score":332,"percentile":367},"2025-12-21",{"date":395,"score":332,"percentile":396},"2025-12-22",0.85809,{"date":398,"score":332,"percentile":388},"2025-12-23",{"date":400,"score":332,"percentile":401},"2025-12-24",0.85818,{"date":403,"score":332,"percentile":404},"2025-12-25",0.85834,{"date":406,"score":332,"percentile":407},"2025-12-26",0.85835,{"date":409,"score":410,"percentile":411},"2025-12-27",0.0311,0.86451,{"date":413,"score":332,"percentile":414},"2025-12-28",0.85827,{"date":416,"score":332,"percentile":417},"2025-12-29",0.85822,{"date":419,"score":332,"percentile":420},"2025-12-30",0.85829,{"date":422,"score":332,"percentile":423},"2025-12-31",0.85837,{"date":425,"score":332,"percentile":426},"2026-01-01",0.85893,{"date":428,"score":332,"percentile":429},"2026-01-02",0.85895,{"date":431,"score":332,"percentile":426},"2026-01-03",{"date":433,"score":332,"percentile":434},"2026-01-04",0.85836,{"date":436,"score":332,"percentile":404},"2026-01-05",{"date":438,"score":332,"percentile":434},"2026-01-06",{"date":440,"score":332,"percentile":423},"2026-01-07",{"date":442,"score":332,"percentile":443},"2026-01-08",0.85846,{"date":445,"score":332,"percentile":443},"2026-01-09",{"date":447,"score":332,"percentile":336},"2026-01-10",{"date":449,"score":332,"percentile":423},"2026-01-11",{"date":451,"score":332,"percentile":452},"2026-01-12",0.85833,{"date":454,"score":332,"percentile":455},"2026-01-13",0.85828,{"date":457,"score":332,"percentile":458},"2026-01-14",0.85843,{"date":460,"score":332,"percentile":461},"2026-01-15",0.85842,{"date":463,"score":332,"percentile":464},"2026-01-16",0.85849,{"date":466,"score":332,"percentile":467},"2026-01-17",0.85852,{"date":469,"score":332,"percentile":470},"2026-01-18",0.8585,{"date":472,"score":332,"percentile":473},"2026-01-19",0.85848,{"date":475,"score":332,"percentile":476},"2026-01-20",0.85847,{"date":478,"score":332,"percentile":467},"2026-01-21",{"date":480,"score":332,"percentile":481},"2026-01-22",0.85856,{"date":483,"score":332,"percentile":484},"2026-01-23",0.85869,{"date":486,"score":332,"percentile":487},"2026-01-24",0.85876,{"date":489,"score":332,"percentile":490},"2026-01-25",0.85873,{"date":492,"score":332,"percentile":493},"2026-01-26",0.85871,{"date":495,"score":332,"percentile":487},"2026-01-27",{"date":497,"score":332,"percentile":498},"2026-01-28",0.85882,{"date":500,"score":332,"percentile":501},"2026-01-29",0.85884,{"date":503,"score":332,"percentile":504},"2026-01-30",0.85891,{"date":506,"score":332,"percentile":507},"2026-01-31",0.85889,{"date":509,"score":332,"percentile":510},"2026-02-01",0.8595,[512],{"source":50,"cvss_v2_0":513,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":48,"baseSeverity":9,"vectorString":51,"impactScore":514,"exploitabilityScore":515},6.9,10,[517,532,539],{"ecosystem":9,"name":518,"vendor":519,"product":520,"cpe_part":521,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":522},"ubuntu linux","canonical","ubuntu_linux","o",[523,526,528,530],{"version":524,"is_range":44,"range_type":525,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.06","cpe",{"version":527,"is_range":44,"range_type":525,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.04",{"version":529,"is_range":44,"range_type":525,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.10",{"version":531,"is_range":44,"range_type":525,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.04",{"ecosystem":9,"name":533,"vendor":534,"product":535,"cpe_part":521,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":536},"debian linux","debian","debian_linux",[537],{"version":538,"is_range":44,"range_type":525,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0",{"ecosystem":9,"name":540,"vendor":541,"product":540,"cpe_part":542,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":543},"ruby","ruby-lang","a",[544,549,554,558,562],{"version":545,"is_range":546,"range_type":525,"version_start":9,"version_start_type":9,"version_end":547,"version_end_type":548,"fixed_in":9},"lte1.8.4",true,"1.8.4","including",{"version":550,"is_range":546,"range_type":525,"version_start":551,"version_start_type":548,"version_end":552,"version_end_type":553,"fixed_in":9},"gte1.8.5_lt1.8.5.231","1.8.5","1.8.5.231","excluding",{"version":555,"is_range":546,"range_type":525,"version_start":556,"version_start_type":548,"version_end":557,"version_end_type":553,"fixed_in":9},"gte1.8.6_lt1.8.6.230","1.8.6","1.8.6.230",{"version":559,"is_range":546,"range_type":525,"version_start":560,"version_start_type":548,"version_end":561,"version_end_type":553,"fixed_in":9},"gte1.8.7_lt1.8.7.22","1.8.7","1.8.7.22",{"version":563,"is_range":546,"range_type":525,"version_start":564,"version_start_type":548,"version_end":565,"version_end_type":553,"fixed_in":9},"gte1.9.0_lt1.9.0.2","1.9.0","1.9.0.2"]