CVE-2025-55193: Active Record logging vulnerable to ANSI escape injection
(updated )
This vulnerability has been assigned the CVE identifier CVE-2025-55193
References
- github.com/advisories/GHSA-76r7-hhxj-r776
- github.com/rails/rails
- github.com/rails/rails/commit/3beef20013736fd52c5dcfdf061f7999ba318290
- github.com/rails/rails/commit/568c0bc2f1e74c65d150a84b89a080949bf9eb9b
- github.com/rails/rails/commit/6a944ca4805e72050a0fbb1a461534eb760d3202
- github.com/rails/rails/security/advisories/GHSA-76r7-hhxj-r776
- nvd.nist.gov/vuln/detail/CVE-2025-55193
Code Behaviors & Features
Detect and mitigate CVE-2025-55193 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →