Vuln
·
Scope
Home
Packages
KEV
Critical
Insights
Jobs
Pricing
EN
中
Loading…
RubyGems/net-imap — 10 CVEs · VulnScope
pkg:RubyGems/
net-imap
10 total CVEs
CRITICAL
2
HIGH
2
MEDIUM
3
✅ Check your installed version
Check
All known vulnerabilities
CRITICAL
9.8
CVE-2026-42257
net-imap vulnerable to command Injection via "raw" arguments to multiple commands
>= 0.6.0, < 0.6.4
CRITICAL
9.8
CVE-2026-42258
net-imap vulnerable to command Injection via unvalidated Symbol inputs
>= 0.6.0, < 0.6.4
HIGH
7.5
CVE-2026-42245
net-imap has quadratic complexity when reading response literals
>= 0.6.0, < 0.6.4
HIGH
7.4
net-imap vulnerable to STARTTLS stripping via invalid response timing
>= 0.6.0, < 0.6.4
MEDIUM
6.5
net-imap vulnerable to denial of service via high iteration count for `SCRAM-*` authentication
>= 0.6.0, < 0.6.4
MEDIUM
6.5
net-imap rubygem vulnerable to possible DoS by memory exhaustion
>= 0.5.0, < 0.5.7
MEDIUM
6.5
Possible DoS by memory exhaustion in net-imap
>= 0.3.2, < 0.3.8
—
Net::IMAP: Command Injection via ID command argument
>= 0.6.0, < 0.6.4.1
—
Net::IMAP: Denial of Service via incomplete raw argument validation
>= 0.6.0, < 0.6.4.1
—
Net::IMAP: Command Injection via non-synchronizing literal in "raw" argument
>= 0.6.0, < 0.6.4.1
CVE-2026-42246
CVE-2026-42256
CVE-2025-43857
CVE-2025-25186
CVE-2026-47242
CVE-2026-47241
CVE-2026-47240