Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:ruby/ruby@2.2

Type ruby

Namespace

Name ruby

Version 2.2

Qualifiers

Subpath

Is_vulnerable true

Next_non_vulnerable_version null

Latest_non_vulnerable_version null

Affected_by_vulnerabilities

url

VCID-1bdw-9rs5-6ycg

vulnerability_id

VCID-1bdw-9rs5-6ycg

summary

several

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4164.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4164.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-4164

reference_id

reference_type

scores

value	0.11958
scoring_system	epss
scoring_elements	0.9372
published_at	2026-04-01T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93729
published_at	2026-04-02T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.9374
published_at	2026-04-04T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93743
published_at	2026-04-07T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93752
published_at	2026-04-08T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93755
published_at	2026-04-09T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93759
published_at	2026-04-13T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93781
published_at	2026-04-16T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93787
published_at	2026-04-18T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93789
published_at	2026-04-21T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93793
published_at	2026-04-24T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-4164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1821
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1821

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4073
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4073

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4164
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4164

reference_url	https://www.ruby-lang.org/en/news/2013/11/22/heap-overflow-in-floating-point-parsing-cve-2013-4164
reference_id
reference_type
scores
url	https://www.ruby-lang.org/en/news/2013/11/22/heap-overflow-in-floating-point-parsing-cve-2013-4164

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1033460
reference_id	1033460
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1033460

reference_url	https://security.gentoo.org/glsa/201412-27
reference_id	GLSA-201412-27
reference_type
scores
url	https://security.gentoo.org/glsa/201412-27

reference_url	https://access.redhat.com/errata/RHSA-2013:1763
reference_id	RHSA-2013:1763
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1763

reference_url	https://access.redhat.com/errata/RHSA-2013:1764
reference_id	RHSA-2013:1764
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1764

reference_url	https://access.redhat.com/errata/RHSA-2013:1767
reference_id	RHSA-2013:1767
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1767

reference_url	https://access.redhat.com/errata/RHSA-2014:0011
reference_id	RHSA-2014:0011
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:0011

reference_url	https://access.redhat.com/errata/RHSA-2014:0215
reference_id	RHSA-2014:0215
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:0215

reference_url	https://usn.ubuntu.com/2035-1/
reference_id	USN-2035-1
reference_type
scores
url	https://usn.ubuntu.com/2035-1/

fixed_packages

aliases

CVE-2013-4164, GHSA-j98q-m2w8-57rc, OSV-100113

risk_score

0.2

exploitability

2.0

weighted_severity

0.1

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-1bdw-9rs5-6ycg

url

VCID-3uaa-r5vu-2fg9

vulnerability_id

VCID-3uaa-r5vu-2fg9

summary

ruby: DoS via long string in str_buf_cat()

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3916.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3916.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-3916

reference_id

reference_type

scores

value	0.0049
scoring_system	epss
scoring_elements	0.65623
published_at	2026-04-24T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.65491
published_at	2026-04-01T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.6554
published_at	2026-04-02T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.6557
published_at	2026-04-04T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.65536
published_at	2026-04-07T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.65588
published_at	2026-04-08T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.656
published_at	2026-04-09T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.65619
published_at	2026-04-11T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.65605
published_at	2026-04-12T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.65577
published_at	2026-04-13T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.65612
published_at	2026-04-16T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.65625
published_at	2026-04-18T12:55:00Z

value	0.0049
scoring_system	epss
scoring_elements	0.65608
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-3916

reference_url	https://bugs.ruby-lang.org/issues/9709
reference_id
reference_type
scores
url	https://bugs.ruby-lang.org/issues/9709

reference_url	http://seclists.org/oss-sec/2014/q2/362
reference_id
reference_type
scores
url	http://seclists.org/oss-sec/2014/q2/362

reference_url	http://seclists.org/oss-sec/2014/q2/375
reference_id
reference_type
scores
url	http://seclists.org/oss-sec/2014/q2/375

reference_url	https://exchange.xforce.ibmcloud.com/vulnerabilities/93505
reference_id
reference_type
scores
url	https://exchange.xforce.ibmcloud.com/vulnerabilities/93505

reference_url	https://vulners.com/rubygems/RUBY:RUBY-2014-3916-107478
reference_id
reference_type
scores
url	https://vulners.com/rubygems/RUBY:RUBY-2014-3916-107478

reference_url	http://www.securityfocus.com/bid/67705
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/67705

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1164844
reference_id	1164844
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1164844

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubyonrails:rails:1.9.3:::::::*
reference_id	cpe:2.3:a:rubyonrails:rails:1.9.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubyonrails:rails:1.9.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubyonrails:rails:2.0.0:::::::*
reference_id	cpe:2.3:a:rubyonrails:rails:2.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubyonrails:rails:2.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubyonrails:rails:2.1.0:::::::*
reference_id	cpe:2.3:a:rubyonrails:rails:2.1.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubyonrails:rails:2.1.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2014-3916

reference_id

CVE-2014-3916

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:N/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2014-3916

fixed_packages

aliases

CVE-2014-3916, GHSA-252h-69rw-g2rp, OSV-107478

risk_score

2.2

exploitability

0.5

weighted_severity

4.5

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-3uaa-r5vu-2fg9

url

VCID-cvs2-zecm-z3h8

vulnerability_id

VCID-cvs2-zecm-z3h8

summary

ruby: DL:: dlopen could open a library with tainted library name

references

reference_url	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=796344
reference_id
reference_type
scores
url	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=796344

reference_url	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=796551
reference_id
reference_type
scores
url	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=796551

reference_url	http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html

reference_url	https://access.redhat.com/errata/RHSA-2018:0583
reference_id
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:0583

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7551.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-7551.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-7551

reference_id

reference_type

scores

value	0.00166
scoring_system	epss
scoring_elements	0.37385
published_at	2026-04-24T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37555
published_at	2026-04-01T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37654
published_at	2026-04-13T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37702
published_at	2026-04-16T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37684
published_at	2026-04-18T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37622
published_at	2026-04-21T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37737
published_at	2026-04-02T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37762
published_at	2026-04-04T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.3764
published_at	2026-04-07T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.3769
published_at	2026-04-08T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37704
published_at	2026-04-09T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37717
published_at	2026-04-11T12:55:00Z

value	0.00166
scoring_system	epss
scoring_elements	0.37682
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-7551

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://github.com/ruby/ruby/commit/339e11a7f178312d937b7c95dd3115ce7236597a
reference_id
reference_type
scores
url	https://github.com/ruby/ruby/commit/339e11a7f178312d937b7c95dd3115ce7236597a

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2015-7551

reference_id

reference_type

scores

value	4.6
scoring_system	cvssv2
scoring_elements	AV:L/AC:L/Au:N/C:P/I:P/A:P

value	8.4
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	8.4
scoring_system	cvssv3
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2015-7551

reference_url	https://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-7551.html
reference_id
reference_type
scores
url	https://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-7551.html

reference_url	https://puppet.com/security/cve/ruby-dec-2015-security-fixes
reference_id
reference_type
scores
url	https://puppet.com/security/cve/ruby-dec-2015-security-fixes

reference_url	https://support.apple.com/HT206167
reference_id
reference_type
scores
url	https://support.apple.com/HT206167

reference_url	https://www.ruby-lang.org/en/news/2015/12/16/unsafe-tainted-string-usage-in-fiddle-and-dl-cve-2015-7551/
reference_id
reference_type
scores
url	https://www.ruby-lang.org/en/news/2015/12/16/unsafe-tainted-string-usage-in-fiddle-and-dl-cve-2015-7551/

reference_url	http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

reference_url	http://www.securityfocus.com/bid/76060
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/76060

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1248935
reference_id	1248935
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1248935

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby::::::::
reference_id	cpe:2.3:a:ruby-lang:ruby::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.0:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.1:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.2:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.3:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.4:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.5:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.6:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.7:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.2.0:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.2.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.2.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.2.1:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.2.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.2.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.2.2:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.2.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.2.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.2.3:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.2.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.2.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x::::::::
reference_id	cpe:2.3:o:apple:mac_os_x::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x::::::::

reference_url	https://usn.ubuntu.com/3365-1/
reference_id	USN-3365-1
reference_type
scores
url	https://usn.ubuntu.com/3365-1/

fixed_packages

aliases

CVE-2015-7551, GHSA-m9xr-x5mq-4fp5

risk_score

3.8

exploitability

0.5

weighted_severity

7.6

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-cvs2-zecm-z3h8

url

VCID-k6dd-ykw2-nfh6

vulnerability_id

VCID-k6dd-ykw2-nfh6

summary

security update

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-1855.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-1855.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-1855

reference_id

reference_type

scores

value	0.0272
scoring_system	epss
scoring_elements	0.85966
published_at	2026-04-24T12:55:00Z

value	0.0272
scoring_system	epss
scoring_elements	0.85867
published_at	2026-04-01T12:55:00Z

value	0.0272
scoring_system	epss
scoring_elements	0.85956
published_at	2026-04-18T12:55:00Z

value	0.0272
scoring_system	epss
scoring_elements	0.85947
published_at	2026-04-21T12:55:00Z

value	0.0272
scoring_system	epss
scoring_elements	0.85877
published_at	2026-04-02T12:55:00Z

value	0.0272
scoring_system	epss
scoring_elements	0.85894
published_at	2026-04-04T12:55:00Z

value	0.0272
scoring_system	epss
scoring_elements	0.85898
published_at	2026-04-07T12:55:00Z

value	0.0272
scoring_system	epss
scoring_elements	0.85916
published_at	2026-04-08T12:55:00Z

value	0.0272
scoring_system	epss
scoring_elements	0.85926
published_at	2026-04-09T12:55:00Z

value	0.0272
scoring_system	epss
scoring_elements	0.85941
published_at	2026-04-11T12:55:00Z

value	0.0272
scoring_system	epss
scoring_elements	0.85939
published_at	2026-04-12T12:55:00Z

value	0.0272
scoring_system	epss
scoring_elements	0.85934
published_at	2026-04-13T12:55:00Z

value	0.0272
scoring_system	epss
scoring_elements	0.85952
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-1855

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1855
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1855

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2015-1855

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3
scoring_elements

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2015-1855

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1209981
reference_id	1209981
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1209981

reference_url	https://usn.ubuntu.com/3365-1/
reference_id	USN-3365-1
reference_type
scores
url	https://usn.ubuntu.com/3365-1/

fixed_packages

aliases

CVE-2015-1855, GHSA-4x8v-74xf-h4g3

risk_score

2.6

exploitability

0.5

weighted_severity

5.3

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-k6dd-ykw2-nfh6

url

VCID-rwak-wvuw-qbcg

vulnerability_id

VCID-rwak-wvuw-qbcg

summary

security update

references

reference_url	http://advisories.mageia.org/MGASA-2014-0472.html
reference_id
reference_type
scores
url	http://advisories.mageia.org/MGASA-2014-0472.html

reference_url	http://rhn.redhat.com/errata/RHSA-2014-1912.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2014-1912.html

reference_url	http://rhn.redhat.com/errata/RHSA-2014-1913.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2014-1913.html

reference_url	http://rhn.redhat.com/errata/RHSA-2014-1914.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2014-1914.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-4975.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-4975.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-4975

reference_id

reference_type

scores

value	0.03449
scoring_system	epss
scoring_elements	0.87539
published_at	2026-04-24T12:55:00Z

value	0.03449
scoring_system	epss
scoring_elements	0.87454
published_at	2026-04-01T12:55:00Z

value	0.03449
scoring_system	epss
scoring_elements	0.87464
published_at	2026-04-02T12:55:00Z

value	0.03449
scoring_system	epss
scoring_elements	0.87478
published_at	2026-04-04T12:55:00Z

value	0.03449
scoring_system	epss
scoring_elements	0.8748
published_at	2026-04-07T12:55:00Z

value	0.03449
scoring_system	epss
scoring_elements	0.87499
published_at	2026-04-08T12:55:00Z

value	0.03449
scoring_system	epss
scoring_elements	0.87505
published_at	2026-04-09T12:55:00Z

value	0.03449
scoring_system	epss
scoring_elements	0.87517
published_at	2026-04-11T12:55:00Z

value	0.03449
scoring_system	epss
scoring_elements	0.87512
published_at	2026-04-12T12:55:00Z

value	0.03449
scoring_system	epss
scoring_elements	0.87508
published_at	2026-04-13T12:55:00Z

value	0.03449
scoring_system	epss
scoring_elements	0.87523
published_at	2026-04-21T12:55:00Z

value	0.03449
scoring_system	epss
scoring_elements	0.87525
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-4975

reference_url	https://bugs.ruby-lang.org/issues/10019
reference_id
reference_type
scores
url	https://bugs.ruby-lang.org/issues/10019

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4975
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4975

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8080
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8080

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8090
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8090

reference_url	https://exchange.xforce.ibmcloud.com/vulnerabilities/94706
reference_id
reference_type
scores
url	https://exchange.xforce.ibmcloud.com/vulnerabilities/94706

reference_url	http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=revision&revision=46778
reference_id
reference_type
scores
url	http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=revision&revision=46778

reference_url	http://www.debian.org/security/2015/dsa-3157
reference_id
reference_type
scores
url	http://www.debian.org/security/2015/dsa-3157

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2015:129
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2015:129

reference_url	http://www.openwall.com/lists/oss-security/2014/07/09/13
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2014/07/09/13

reference_url	http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

reference_url	http://www.securityfocus.com/bid/68474
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/68474

reference_url	http://www.ubuntu.com/usn/USN-2397-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-2397-1

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1118158
reference_id	1118158
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1118158

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby::::::::
reference_id	cpe:2.3:a:ruby-lang:ruby::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p0::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:p0::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p0::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p195::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:p195::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p195::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p247::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:p247::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p247::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:preview1::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:preview1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:preview1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:preview2::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:preview2::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:preview2::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:rc1::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:rc1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:rc1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:rc2::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:rc2::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:rc2::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1:-::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1:-::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1:-::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.1:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.2:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1:preview1::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1:preview1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1:preview1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2014-4975

reference_id

CVE-2014-4975

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:N/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2014-4975

reference_url	https://access.redhat.com/errata/RHSA-2014:1912
reference_id	RHSA-2014:1912
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1912

reference_url	https://access.redhat.com/errata/RHSA-2014:1913
reference_id	RHSA-2014:1913
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1913

reference_url	https://access.redhat.com/errata/RHSA-2014:1914
reference_id	RHSA-2014:1914
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1914

reference_url	https://access.redhat.com/errata/RHSA-2026:7305
reference_id	RHSA-2026:7305
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7305

reference_url	https://access.redhat.com/errata/RHSA-2026:7307
reference_id	RHSA-2026:7307
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7307

reference_url	https://access.redhat.com/errata/RHSA-2026:8838
reference_id	RHSA-2026:8838
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8838

reference_url	https://usn.ubuntu.com/2397-1/
reference_id	USN-2397-1
reference_type
scores
url	https://usn.ubuntu.com/2397-1/

fixed_packages

aliases

CVE-2014-4975, GHSA-gxj7-mcpg-jpr6, OSV-108971

risk_score

2.2

exploitability

0.5

weighted_severity

4.5

resource_url

http://public2.vulnerablecode.io/vulnerabilities/VCID-rwak-wvuw-qbcg

Fixing_vulnerabilities

Risk_score 3.8

Resource_url http://public2.vulnerablecode.io/packages/pkg:ruby/ruby@2.2

Package Instance