oxidized-web (RubyGems) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the RubyGems package oxidized-web, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2025-27590 — CVSS 9.0 (critical): In oxidized-web (aka Oxidized Web) before 0.15.0, the RANCID migration page allows an unauthenticated user to gain control over the Linux…
CVE-2019-25088 — CVSS 3.5 (low): A vulnerability was found in ytti Oxidized Web. It has been classified as problematic. Affected is an unknown function of the file…