Ruby
by Ruby-Lang
Standard maintenance is sufficient
Ruby has low exploitation rates. Attackers rarely target this software's known vulnerabilities.
What to do
- Keep automatic updates enabled
- No urgent action needed
- Review periodically as part of normal maintenance
What Attackers Target
Vulnerabilities with high exploit probability
6.4%
Confirmed actively exploited (CISA)
0.0%
Public exploit code available
2.1%
Based on 47 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2017-17405 | 8.8 | 88.6% | — |
| CVE-2009-5147 | 7.3 | 56.2% | — |
| CVE-2016-2338 | 9.8 | 13.5% | — |
| CVE-2017-14033 | 7.5 | 7.8% | — |
| CVE-2017-17790 | 9.8 | 4.7% | — |
| CVE-2018-16395 | 9.8 | 4.4% | — |
| CVE-2018-16396 | 8.1 | 3.3% | — |
| CVE-2015-1855 | 5.9 | 2.7% | — |
| CVE-2018-6914 | 7.5 | 2.4% | — |
| CVE-2020-5247 | 6.5 | 2.1% | — |
| CVE-2015-9096 | 6.1 | 1.6% | — |
| CVE-2018-8777 | 7.5 | 1.4% | — |
| CVE-2021-33621 | 8.8 | 1.4% | — |
| CVE-2017-10784 | 8.8 | 1.4% | — |
| CVE-2018-8780 | 9.1 | 1.3% | — |
| CVE-2018-8779 | 7.5 | 1.3% | — |
| CVE-2016-2336 | 9.8 | 1.3% | — |
| CVE-2017-14064 | 9.8 | 1.2% | — |
| CVE-2019-16255 | 8.1 | 1.2% | — |
| CVE-2017-17742 | 5.3 | 1.2% | — |
5
/ 100
low-risk
Active Threat
4/50 · Minimal
Exploit Availability
1/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.