rubygems activerecord Vulnerabilities: CVEs, CISA KEV & Security Advisories

This page aggregates every publicly disclosed vulnerability (CVE) affecting rubygems activerecord, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list.

Affected versions and CVEs

Browse every rubygems activerecord version named in a CVE, then pick one to see only the CVEs that affect it.

Fixed in

2.3.152 CVEs
2.3.172 CVEs
6.1.7.12 CVEs
7.0.4.12 CVEs
2.1.11 CVE
2.3.101 CVE
2.3.131 CVE
2.3.181 CVE
3.0.11 CVE
3.0.101 CVE
3.0.131 CVE
3.0.141 CVE
3.0.181 CVE
3.0.191 CVE
3.0.41 CVE
3.1.01 CVE
3.1.0.rc51 CVE
3.1.101 CVE
3.1.111 CVE
3.1.121 CVE
3.1.51 CVE
3.1.61 CVE
3.1.91 CVE
3.2.101 CVE
3.2.111 CVE
3.2.121 CVE
3.2.131 CVE
3.2.191 CVE
3.2.22.11 CVE
3.2.41 CVE
3.2.61 CVE
4.0.31 CVE
4.0.71 CVE
4.0.91 CVE
4.1.0.beta21 CVE
4.1.14.11 CVE
4.1.31 CVE
4.1.51 CVE
4.2.01 CVE
4.2.5.11 CVE
4.2.7.11 CVE
5.0.0.beta1.11 CVE
5.2.4.51 CVE
5.2.8.11 CVE
6.0.3.51 CVE
6.0.5.11 CVE
6.0.6.11 CVE
6.1.2.11 CVE
6.1.6.11 CVE
7.0.3.11 CVE
7.1.5.21 CVE
7.2.2.21 CVE
8.0.2.11 CVE

Find a version

23 CVEs

Sort

Active Record logging vulnerable to ANSI escape injection
CVE-2025-55193
Patch
CWE-150
Low · CVSS 2.7
EPSS 0.3% (57th pct)2025-08-13
Vulnerability · 2023-02-09
CVE-2023-22794
Patch
CWE-89
Unscored
EPSS 5.8% (91th pct)2023-02-09
High vulnerability · 2023-02-09
CVE-2022-44566
Public exploit
Patch
CWE-400
High · CVSS 7.5
EPSS 1.5% (82th pct)2023-02-09
Critical vulnerability · 2022-12-05
CVE-2022-32224
Public exploit
Patch
CWE-502
Critical · CVSS 9.8
EPSS 1.9% (84th pct)2022-12-05
Vulnerability · 2021-02-11
CVE-2021-22880
Patch
CWE-400
Unscored
EPSS 2.6% (86th pct)2021-02-11
Vulnerability · 2016-09-07
CVE-2016-6317
Patch
Unscored
EPSS 0.4% (60th pct)2016-09-07
Vulnerability · 2016-02-16
CVE-2015-7577
Patch
Unscored
EPSS 1.2% (79th pct)2016-02-16
Vulnerability · 2014-08-20
CVE-2014-3514
Patch
Unscored
EPSS 0.3% (56th pct)2014-08-20
Vulnerability · 2014-07-07
CVE-2014-3483
Patch
Unscored
EPSS 0.9% (76th pct)2014-07-07
Vulnerability · 2014-07-07
CVE-2014-3482
Patch
Unscored
EPSS 1.5% (82th pct)2014-07-07
Vulnerability · 2014-02-20
CVE-2014-0080
Patch
Unscored
EPSS 0.2% (48th pct)2014-02-20
Vulnerability · 2013-04-22
CVE-2013-3221
Patch
Unscored
EPSS 0.5% (66th pct)2013-04-22
Vulnerability · 2013-03-19
CVE-2013-1854
Patch
Unscored
EPSS 1.8% (83th pct)2013-03-19
Vulnerability · 2013-02-13
CVE-2013-0277
Patch
Unscored
EPSS 6.7% (91th pct)2013-02-13
Vulnerability · 2013-02-13
CVE-2013-0276
Patch
Unscored
EPSS 0.6% (70th pct)2013-02-13
Vulnerability · 2013-01-13
CVE-2013-0155
Patch
Unscored
EPSS 18.2% (95th pct)2013-01-13
Vulnerability · 2013-01-04
CVE-2012-6496
Patch
Unscored
EPSS 1.0% (78th pct)2013-01-04
Vulnerability · 2012-06-22
CVE-2012-2695
Patch
Unscored
EPSS 0.6% (71th pct)2012-06-22
Vulnerability · 2012-06-22
CVE-2012-2661
Patch
Unscored
EPSS 0.6% (71th pct)2012-06-22
Vulnerability · 2011-08-29
CVE-2011-2930
Patch
Unscored
EPSS 1.0% (77th pct)2011-08-29
Vulnerability · 2011-02-21
CVE-2011-0448
Patch
Unscored
EPSS 0.7% (72th pct)2011-02-21
Vulnerability · 2010-10-27
CVE-2010-3933
Patch
Unscored
EPSS 0.7% (73th pct)2010-10-27
Vulnerability · 2008-09-30
CVE-2008-4094
Patch
Unscored
EPSS 3.1% (87th pct)2008-09-30

rubygems activerecord Vulnerabilities

Overview

Severity and exploitation

Affected versions and CVEs

Fixed in

Common weakness types

Disclosure activity by year

Other rubygems products

Frequently asked questions

How many CVEs does rubygems activerecord have?

How many rubygems activerecord CVEs are in CISA KEV?

Are there public exploits for rubygems activerecord vulnerabilities?

Which versions of rubygems activerecord are affected?

What are the most common weakness types in rubygems activerecord CVEs?

How many critical rubygems activerecord vulnerabilities are there?

What is the average severity of rubygems activerecord CVEs?

References

Track rubygems activerecord vulnerabilities