RubyGems Package Vulnerabilities

All 402 Ruby gems with known CVEs, ranked by live CVE volume — 1,003 package-to-CVE mappings with affected ranges and fixed versions. Updated continuously as new vulnerabilities publish.

  1. 51.actiontext3 CVEs
  2. 52.activeadmin3 CVEs
  3. 53.chartkick3 CVEs
  4. 54.concurrent-ruby3 CVEs
  5. 55.decidim-admin3 CVEs
  6. 56.devise-two-factor3 CVEs
  7. 57.faraday3 CVEs
  8. 58.fluentd3 CVEs
  9. 59.geminabox3 CVEs
  10. 60.git3 CVEs
  11. 61.gollum3 CVEs
  12. 62.google-protobuf3 CVEs
  13. 63.httparty3 CVEs
  14. 64.json-jwt3 CVEs
  15. 65.omniauth3 CVEs
  16. 66.openssl3 CVEs
  17. 67.phlex3 CVEs
  18. 68.private_address_check3 CVEs
  19. 69.rack-cors3 CVEs
  20. 70.rdoc3 CVEs
  21. 71.resque3 CVEs
  22. 72.rest-client3 CVEs
  23. 73.rubyzip3 CVEs
  24. 74.spina3 CVEs
  25. 75.spree_api3 CVEs
  26. 76.actionmailer2 CVEs
  27. 77.addressable2 CVEs
  28. 78.administrate2 CVEs
  29. 79.bson2 CVEs
  30. 80.bsv-sdk2 CVEs
  31. 81.cocoapods-downloader2 CVEs
  32. 82.decidim-meetings2 CVEs
  33. 83.decidim-templates2 CVEs
  34. 84.doorkeeper-openid_connect2 CVEs
  35. 85.echor2 CVEs
  36. 86.facter2 CVEs
  37. 87.faye2 CVEs
  38. 88.field_test2 CVEs
  39. 89.git-fastclone2 CVEs
  40. 90.google_sign_in2 CVEs
  41. 91.i18n2 CVEs
  42. 92.iodine2 CVEs
  43. 93.jruby-openssl2 CVEs
  44. 94.kaminari2 CVEs
  45. 95.kramdown2 CVEs
  46. 96.logstash-core2 CVEs
  47. 97.mapbox-rails2 CVEs
  48. 98.mechanize2 CVEs
  49. 99.mini_magick2 CVEs
  50. 100.net-ldap2 CVEs

Which RubyGems packages run in YOUR stack?

EchelonGraph inventories your dependencies and correlates them against live CVE intelligence — affected ranges, fixed versions, and blast radius in one graph.

Start Free Scan →