NetBSD

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 10.0 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2018-16471 CVE-2019-16782 CVE-2020-8184 CVE-2020-8161 Upstream summary: pkgsrc audit-packages flagged ruby{23,24,25}-rack16<1.6.11 for vulnerability class 'cross-site-scripting'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-16471 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 10.0 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2026-22860 CVE-2026-25500 CVE-2024-25126 CVE-2024-26141 CVE-2024-26146 CVE-2025-59830 CVE-2025-61770 CVE-2025-61771  +3 more Upstream summary: pkgsrc audit-packages flagged ruby{32,33,34,40}-rack2<2.2.22 for vulnerability class 'path-traversal'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2026-22860 Table of contents Symptom & Impact Environment […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 10.0 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2013-0277 CVE-2017-17920 CVE-2017-17916 CVE-2017-17917 CVE-2017-17919 CVE-2022-32209 CVE-2023-22797 Upstream summary: pkgsrc audit-packages flagged ruby{18,19,193}-rails<3.0.17 for vulnerability class 'cross-site-scripting'. Reference: http://secunia.com/advisories/50128/ Table of contents Symptom & Impact Environment & Reproduction Root […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 10.0 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Upstream summary: pkgsrc audit-packages flagged ruby{18,19,193}-rails-2.[0-9]* for vulnerability class 'eol'. Reference: https://ftp.NetBSD.org/pub/NetBSD/packages/vulns/eol-packages Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis Solution – Primary […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 10.0 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2018-3741 CVE-2022-23519 CVE-2022-23520 CVE-2022-23518 Upstream summary: pkgsrc audit-packages flagged ruby{22,23,24,25}-rails-html-sanitizer<1.0.4 for vulnerability class 'cross-site-scripting'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-3741 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 10.0 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2025-55193 Upstream summary: pkgsrc audit-packages flagged ruby{31,32,33,34}-rails71<7.1.5.2 for vulnerability class 'improper-output-neutralization'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2025-55193 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 10.0 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2025-55193 Upstream summary: pkgsrc audit-packages flagged ruby{31,32,33,34}-rails72<7.2.2.2 for vulnerability class 'improper-output-neutralization'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2025-55193 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 10.0 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2025-55193 Upstream summary: pkgsrc audit-packages flagged ruby{31,32,33,34}-rails80<8.0.2.1 for vulnerability class 'improper-output-neutralization'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2025-55193 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 10.0 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Upstream summary: pkgsrc audit-packages flagged ruby{18,19,193}-rdoc<3.12.1 for vulnerability class 'cross-site-scripting'. Reference: http://www.ruby-lang.org/en/news/2013/02/06/rdoc-xss-cve-2013-0256/ Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis Solution – Primary […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 10.0 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2015-5147 Upstream summary: pkgsrc audit-packages flagged ruby{18,193,200,21,22}-redcarpat<3.3.2 for vulnerability class 'stack-overflow'. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5147 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis […]