发布于3月6日3月6日 Members VMware Photon OS: CVE-2023-28755 Severity 5 CVSS (AV:N/AC:L/Au:N/C:N/I:N/A:P) Published 03/31/2023 Created 01/21/2025 Added 01/20/2025 Modified 02/04/2025 Description A ReDoS issue was discovered in the URI component through 0.12.0 in Ruby through 3.2.1. The URI parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to URI objects. The fixed versions are 0.12.1, 0.11.1, 0.10.2 and 0.10.0.1. Solution(s) vmware-photon_os_update_tdnf References https://attackerkb.com/topics/cve-2023-28755 CVE - 2023-28755
