Ruby Interpreter is a software that processes Ruby programming code, converting it into machine code and executing it. It allows for interactive Ruby code execution and dynamic loading of libraries, enabling rapid development and debugging. The most commonly used Ruby interpreter is MRI (Matz's Ruby Interpreter), also known as CRuby, which is the original and reference implementation of the Ruby language.

Ruby Interpreter

Ubuntu is a Linux distribution based on Debian, mostly composed of free and open-source software. Ubuntu is officially released in three editions: Desktop, Server, and Core for internet of things devices and robots. All the editions can run on the computer alone or in a virtual machine.

Linux Ubuntu

A flaw was found in REXML. A remote attacker could exploit inefficient regular expression (regex) parsing when processing hex numeric character references (&#x...;) in XML documents. This could lead to a Regular Expression Denial of Service (ReDoS), impacting the availability of the affected component. This issue is the result of an incomplete fix for CVE-2024-49761.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2026-33210	HIGH	8.3	Ruby	ruby:3.3::rubygem-typeprof	No	Yes	Mar 20, 2026
CVE-2026-28390	HIGH	7.5	OpenSSL	ruby:3.3::rubygem-net-telnet	No	Yes	Apr 07, 2026
CVE-2025-10990	HIGH	7.5	Ruby Interpreter	jruby	No	No	Feb 27, 2026
CVE-2026-33532	MEDIUM	4.3	JavaScript	pcs-snmp	No	Yes	Mar 26, 2026
CVE-2025-61594	LOW	2.7	Ruby	uri	No	Yes	Dec 30, 2025

CVE-2025-10990:
Ruby Interpreter vulnerability analysis and mitigation

7.5

Related Ruby Interpreter vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2025-10990: Ruby Interpreter vulnerability analysis and mitigation