Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:gem/newrelic_rpm@2.12.2.beta
Typegem
Namespace
Namenewrelic_rpm
Version2.12.2.beta
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version3.5.3.25
Latest_non_vulnerable_version3.5.3.25
Affected_by_vulnerabilities
0
url VCID-dgwg-dsqz-wyd3
vulnerability_id VCID-dgwg-dsqz-wyd3
summary 
Ruby Agent Sensitive Information Disclosure
A bug in the Ruby agent causes database connection information and raw SQL statements to be transmitted to New Relic servers. The database connection information includes the database IP address, username, and password. The information is not stored or retransmitted by New Relic and is immediately discarded.
references
0
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-0284
reference_id
reference_type
scores
0
value 0.0025
scoring_system epss
scoring_elements 0.48525
published_at 2026-06-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-0284
1
reference_url http://seclists.org/oss-sec/2013/q1/304
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://seclists.org/oss-sec/2013/q1/304
2
reference_url https://github.com/newrelic/newrelic-ruby-agent
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/newrelic/newrelic-ruby-agent
3
reference_url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/newrelic_rpm/CVE-2013-0284.yml
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/newrelic_rpm/CVE-2013-0284.yml
4
reference_url https://newrelic.com/docs/ruby/ruby-agent-security-notification
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://newrelic.com/docs/ruby/ruby-agent-security-notification
5
reference_url https://nvd.nist.gov/vuln/detail/CVE-2013-0284
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2013-0284
6
reference_url https://web.archive.org/web/20130117025417/https://newrelic.com/docs/ruby/ruby-agent-security-notification
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20130117025417/https://newrelic.com/docs/ruby/ruby-agent-security-notification
7
reference_url http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0284
reference_id
reference_type
scores
url http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0284
fixed_packages
0
url pkg:gem/newrelic_rpm@3.5.2.17
purl pkg:gem/newrelic_rpm@3.5.2.17
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dgwg-dsqz-wyd3
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/newrelic_rpm@3.5.2.17
1
url pkg:gem/newrelic_rpm@3.5.3.24
purl pkg:gem/newrelic_rpm@3.5.3.24
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-dgwg-dsqz-wyd3
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/newrelic_rpm@3.5.3.24
2
url pkg:gem/newrelic_rpm@3.5.3.25
purl pkg:gem/newrelic_rpm@3.5.3.25
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/newrelic_rpm@3.5.3.25
aliases CVE-2013-0284, GHSA-q6cw-2553-7837, OSV-90189
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dgwg-dsqz-wyd3
Fixing_vulnerabilities
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:gem/newrelic_rpm@2.12.2.beta