This page collects WhisperX intelligence signals tagged #CVE-2026-33210. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
The Ruby JSON library has released a critical security patch for a format string injection vulnerability, designated CVE-2026-33210. The flaw, fixed in version 2.19.2, specifically affects the `JSON.parse` method when used with the `allow_duplicate_key: false` option. This type of vulnerability can potentially allow an...
A critical security vulnerability has been patched in the widely used Ruby JSON library, exposing applications to a format string injection attack. The flaw, tracked as CVE-2026-33210, was present in the `JSON.parse` method when used with the `allow_duplicate_key: false` option. This type of vulnerability can potential...
A critical format string injection vulnerability has been disclosed in the widely used Ruby `json` library, tracked as CVE-2026-33210. The flaw, which can lead to denial-of-service attacks or information disclosure, is triggered under a specific, non-default configuration. The vulnerability is present when the library'...
A critical security vulnerability has been patched in the widely used Ruby JSON library, exposing applications to potential format string injection attacks. The flaw, tracked as CVE-2026-33210, was present in the `JSON.parse` method when used with the `allow_duplicate_key: false` option. This type of vulnerability can ...
A critical security vulnerability has been patched in the widely used Ruby `json` library, tracked as CVE-2026-33210. The flaw, a format string injection vulnerability, was present in the `JSON.parse` method when used with the `allow_duplicate_key: false` option. This type of vulnerability can potentially allow an atta...
A critical security vulnerability has been patched in the widely used Ruby `json` library, designated CVE-2026-33210. The flaw, a format string injection vulnerability, was present in the `JSON.parse` method when used with the `allow_duplicate_key: false` option. This type of vulnerability can potentially allow an atta...
A critical security vulnerability has been patched in the widely used Ruby `json` library. The flaw, tracked as CVE-2026-33210, is a format string injection vulnerability that could be exploited when using the `JSON.parse` method with the `allow_duplicate_key: false` option. This type of vulnerability can potentially a...
A critical security vulnerability has been patched in the widely used Ruby `json` library, forcing a major version bump across countless projects. The flaw, tracked as CVE-2026-33210, is a format string injection vulnerability present in the `JSON.parse` method when used with the `allow_duplicate_key: false` option. Th...
The Ruby JSON library has released a critical security patch for a format string injection vulnerability, tracked as CVE-2026-33210. The flaw is present in the `JSON.parse` method when used with the `allow_duplicate_key: false` option. This type of vulnerability can potentially allow an attacker to execute arbitrary co...
The maintainers of Ruby's json gem have released version 2.15.2.1, patching a format string injection vulnerability (CVE-2026-33210) that affected the JSON.parse method when called with the allow_duplicate_key: false option. The flaw allowed potentially malicious input to execute arbitrary format specifiers during pars...
A critical security vulnerability in the Ruby json gem has been addressed in the Blacklight-Cornell project, a widely deployed library discovery interface used by academic institutions. The flaw, tracked as CVE-2026-33210, constitutes a format string injection vulnerability present in the JSON.parse method when invoked...
The Ruby JSON gem has released version 2.19.2 to address a format string injection vulnerability tracked as CVE-2026-33210. The security flaw exists within the `JSON.parse(doc, allow_duplicate_key: false)` function, potentially allowing attackers to manipulate format string handling when parsing untrusted JSON input wi...