Rails
by Rubyonrails
Standard maintenance is sufficient
Rails has low exploitation rates. Attackers rarely target this software's known vulnerabilities.
What to do
- Keep automatic updates enabled
- No urgent action needed
- Review periodically as part of normal maintenance
What Attackers Target
Vulnerabilities with high exploit probability
18.5%
Confirmed actively exploited (CISA)
5.6%
Public exploit code available
5.6%
Based on 54 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2019-5418 | 7.5 | 94.3% | Yes |
| CVE-2019-5420 | 9.8 | 93.7% | — |
| CVE-2016-0752 | 7.5 | 91.1% | Yes |
| CVE-2020-8163 | 8.8 | 90.9% | — |
| CVE-2020-8165 | 9.8 | 90.1% | — |
| CVE-2016-2098 | 7.3 | 87.4% | — |
| CVE-2014-0130 | 7.5 | 45.4% | Yes |
| CVE-2021-44528 | 6.1 | 25.1% | — |
| CVE-2021-22881 | 6.1 | 15.5% | — |
| CVE-2019-5419 | 7.5 | 12.1% | — |
| CVE-2021-22904 | 7.5 | 7.9% | — |
| CVE-2020-8164 | 7.5 | 7.4% | — |
| CVE-2015-7581 | 7.5 | 7.1% | — |
| CVE-2016-0751 | 7.5 | 6.1% | — |
| CVE-2024-26142 | 7.5 | 3.5% | — |
| CVE-2024-26144 | 5.3 | 3.1% | — |
| CVE-2021-22885 | 7.5 | 3.1% | — |
| CVE-2023-22792 | 7.5 | 2.6% | — |
| CVE-2021-22880 | 7.5 | 2.6% | — |
| CVE-2016-0753 | 5.3 | 2.3% | — |
27
/ 100
low-risk
Active Threat
21/50 · Moderate
Exploit Availability
6/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.