An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. A malicious FTP server can use the PASV response to trick Net::FTP into connecting back to a given IP address and port. This potentially makes curl extract information about services that are otherwise private and not disclosed (e.g., the attacker can conduct port scans and service banner extractions).
Conclusion & alert: CVE-2021-31810 is rated High Exploit Risk (70.6/100): CVSS Medium severity, with medium exploitation likelihood (EPSS 3.05%). Core evidence: 1 public exploit reference(s) are indexed (Exploit-DB). EPSS rose +2.38% over the last day, indicating growing attacker interest. Mandatory action: Public exploits are available—assess exposure, apply mitigations, and prioritize patching.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
| EDB-ID | Source | Kind | Published | Link |
|---|---|---|---|---|
| — | nvd_ref | exploit_tag | Exploit-DB ↗ |
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 0.67% | 3.05% | +2.38% |
| 2 | 2026-06-04 | 0.58% | 0.67% | +0.09% |
| 3 | 2026-03-04 | — | 0.58% | — |
Full EPSS history (68 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 5.8 | 3.1 | MEDIUM |
|
3.9 | 1.4 | [email protected] |
| 5.0 | 2.0 | MEDIUM |
|
10.0 | 2.9 | [email protected] |
| vendor | priority | summary | link |
|---|---|---|---|
alpine
|
— | CVE-2021-31810: 1 source package rows (ruby); 49 state rows across 9 repos (3.11-main, 3.12-main, 3.17-main, 3.18-main, 3.19-main, 3.20-main, 3.21-main, 3.22-main, edge-main); fixed 9, open 40. | https://security.alpinelinux.org/vuln/CVE-2021-31810 |
debian
|
not yet assigned | CVE-2021-31810 not yet assigned priority: Debian including 2 source packages (jruby, ruby2.7), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5. | https://security-tracker.debian.org/tracker/CVE-2021-31810 |
gentoo
|
normal | CVE-2021-31810: 1 GLSA(s) (202401-27), 1 atom(s) (dev-lang/ruby); latest impact normal. | https://bugs.gentoo.org/buglist.cgi?quicksearch=CVE-2021-31810 |
redhat
|
medium | — | https://access.redhat.com/security/cve/CVE-2021-31810 |
suse
|
high | CVE-2021-31810 severity important: SUSE including 361 source package names (2.17-17.3:libruby2_5-2_5-2.5.9-4.20.1, 2.17-17.3:ruby2.5-2.5.9-4.20.1, …), 1144 product×package rows across 262 product lines (Container bci/ruby, Container suse/rmt-server, … (262 product lines)): Fixed 981, Known Affected 160, Known Not Affected 3. | https://www.suse.com/security/cve/CVE-2021-31810/ |
ubuntu
|
low | CVE-2021-31810 low priority: Ubuntu including 5 source packages (ruby1.9.1, ruby2.0, ruby2.3, ruby2.5, ruby2.7), 44 status rows across 9 suites (bionic, focal, groovy, hirsute, impish, jammy, trusty, upstream, xenial): DNE 33, released 6, needs-triage 5. | https://ubuntu.com/security/CVE-2021-31810 |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| ruby-lang | ruby | <= 2.6.7 | cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:* |
| ruby-lang | ruby | >= 2.7.0, <= 2.7.3 | cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:* |
| ruby-lang | ruby | >= 3.0.0, <= 3.0.1 | cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:* |
| debian | debian_linux | 9.0 | cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* |
| oracle | jd_edwards_enterpriseone_tools | < 9.2.6.1 | cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:*:*:*:*:*:*:*:* |
| URL | Tags |
|---|---|
| https://hackerone.com/reports/1145454 | Exploit Patch Third Party Advisory |
| https://lists.debian.org/debian-lts-announce/2021/10/msg00009.html | Mailing List Third Party Advisory |
| https://lists.debian.org/debian-lts-announce/2023/04/msg00033.html | |
| https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MWXHK5UUHVSHF7HTHMX6JY3WXDVNIHSL/ | |
| https://security.gentoo.org/glsa/202401-27 | |
| https://security.netapp.com/advisory/ntap-20210917-0001/ | Third Party Advisory |
| https://www.oracle.com/security-alerts/cpuapr2022.html | Patch Third Party Advisory |
| https://www.ruby-lang.org/en/news/2021/07/07/trusting-pasv-responses-in-net-ftp/ | Vendor Advisory |