Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:gem/rubygems-update@2.6.14
Typegem
Namespace
Namerubygems-update
Version2.6.14
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version3.0.3
Latest_non_vulnerable_version3.0.3
Affected_by_vulnerabilities
0
url VCID-f7x5-hz5f-hyd3
vulnerability_id VCID-f7x5-hz5f-hyd3
summary 
Improper Restriction of Operations within the Bounds of a Memory Buffer
An issue was discovered in RubyGems. Since `Gem::CommandManager#run` calls alert_error without escaping, escape sequence injection is possible. (There are many ways to cause an error.)
references
0
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8325.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8325.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-8325
reference_id
reference_type
scores
0
value 0.00326
scoring_system epss
scoring_elements 0.55597
published_at 2026-04-13T12:55:00Z
1
value 0.00326
scoring_system epss
scoring_elements 0.55614
published_at 2026-04-12T12:55:00Z
2
value 0.00326
scoring_system epss
scoring_elements 0.55634
published_at 2026-04-16T12:55:00Z
3
value 0.00326
scoring_system epss
scoring_elements 0.55625
published_at 2026-04-09T12:55:00Z
4
value 0.00326
scoring_system epss
scoring_elements 0.55622
published_at 2026-04-08T12:55:00Z
5
value 0.00326
scoring_system epss
scoring_elements 0.55593
published_at 2026-04-04T12:55:00Z
6
value 0.00326
scoring_system epss
scoring_elements 0.55616
published_at 2026-04-21T12:55:00Z
7
value 0.00326
scoring_system epss
scoring_elements 0.55638
published_at 2026-04-18T12:55:00Z
8
value 0.00326
scoring_system epss
scoring_elements 0.55571
published_at 2026-04-07T12:55:00Z
9
value 0.00326
scoring_system epss
scoring_elements 0.55568
published_at 2026-04-02T12:55:00Z
10
value 0.00332
scoring_system epss
scoring_elements 0.55992
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-8325
3
reference_url https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8320
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8320
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8321
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8321
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8322
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8322
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8323
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8323
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8324
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8324
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8325
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8325
10
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
11
reference_url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rubygems-update/CVE-2019-8325.yml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rubygems-update/CVE-2019-8325.yml
12
reference_url https://lists.debian.org/debian-lts-announce/2020/08/msg00027.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2020/08/msg00027.html
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1692522
reference_id 1692522
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1692522
14
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925987
reference_id 925987
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925987
15
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-8325
reference_id CVE-2019-8325
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-8325
16
reference_url https://github.com/advisories/GHSA-4wm8-fjv7-j774
reference_id GHSA-4wm8-fjv7-j774
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-4wm8-fjv7-j774
17
reference_url https://access.redhat.com/errata/RHSA-2019:1148
reference_id RHSA-2019:1148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1148
18
reference_url https://access.redhat.com/errata/RHSA-2019:1150
reference_id RHSA-2019:1150
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1150
19
reference_url https://access.redhat.com/errata/RHSA-2019:1235
reference_id RHSA-2019:1235
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1235
20
reference_url https://access.redhat.com/errata/RHSA-2020:2769
reference_id RHSA-2020:2769
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:2769
21
reference_url https://usn.ubuntu.com/3945-1/
reference_id USN-3945-1
reference_type
scores
url https://usn.ubuntu.com/3945-1/
fixed_packages
0
url pkg:gem/rubygems-update@2.7.9
purl pkg:gem/rubygems-update@2.7.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-f7x5-hz5f-hyd3
1
vulnerability VCID-ha3g-uyse-wybx
2
vulnerability VCID-jkwe-c323-3yez
3
vulnerability VCID-ky5r-bch5-m7dv
4
vulnerability VCID-t78a-dw4s-vqf5
5
vulnerability VCID-xgmc-a5rk-zqag
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.9
1
url pkg:gem/rubygems-update@3.0.2
purl pkg:gem/rubygems-update@3.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-f7x5-hz5f-hyd3
1
vulnerability VCID-ha3g-uyse-wybx
2
vulnerability VCID-jkwe-c323-3yez
3
vulnerability VCID-ky5r-bch5-m7dv
4
vulnerability VCID-t78a-dw4s-vqf5
5
vulnerability VCID-xgmc-a5rk-zqag
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@3.0.2
2
url pkg:gem/rubygems-update@3.0.3
purl pkg:gem/rubygems-update@3.0.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@3.0.3
aliases CVE-2019-8325, GHSA-4wm8-fjv7-j774
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-f7x5-hz5f-hyd3
1
url VCID-ha3g-uyse-wybx
vulnerability_id VCID-ha3g-uyse-wybx
summary 
Injection Vulnerability
An issue was discovered in RubyGems. The gem owner command outputs the contents of the API response directly to stdout. Therefore, if the response is crafted, escape sequence injection may occur.
references
0
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8322.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8322.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-8322
reference_id
reference_type
scores
0
value 0.00326
scoring_system epss
scoring_elements 0.55597
published_at 2026-04-13T12:55:00Z
1
value 0.00326
scoring_system epss
scoring_elements 0.55614
published_at 2026-04-12T12:55:00Z
2
value 0.00326
scoring_system epss
scoring_elements 0.55634
published_at 2026-04-16T12:55:00Z
3
value 0.00326
scoring_system epss
scoring_elements 0.55625
published_at 2026-04-09T12:55:00Z
4
value 0.00326
scoring_system epss
scoring_elements 0.55622
published_at 2026-04-08T12:55:00Z
5
value 0.00326
scoring_system epss
scoring_elements 0.55571
published_at 2026-04-07T12:55:00Z
6
value 0.00326
scoring_system epss
scoring_elements 0.55593
published_at 2026-04-04T12:55:00Z
7
value 0.00326
scoring_system epss
scoring_elements 0.55568
published_at 2026-04-02T12:55:00Z
8
value 0.00326
scoring_system epss
scoring_elements 0.55616
published_at 2026-04-21T12:55:00Z
9
value 0.00326
scoring_system epss
scoring_elements 0.55638
published_at 2026-04-18T12:55:00Z
10
value 0.00332
scoring_system epss
scoring_elements 0.55992
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-8322
3
reference_url https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8320
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8320
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8321
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8321
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8322
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8322
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8323
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8323
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8324
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8324
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8325
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8325
10
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
11
reference_url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rubygems-update/CVE-2019-8322.yml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rubygems-update/CVE-2019-8322.yml
12
reference_url https://hackerone.com/reports/315087
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://hackerone.com/reports/315087
13
reference_url https://lists.debian.org/debian-lts-announce/2020/08/msg00027.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2020/08/msg00027.html
14
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1692516
reference_id 1692516
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1692516
15
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925987
reference_id 925987
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925987
16
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-8322
reference_id CVE-2019-8322
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-8322
17
reference_url https://github.com/advisories/GHSA-mh37-8c3g-3fgc
reference_id GHSA-mh37-8c3g-3fgc
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-mh37-8c3g-3fgc
18
reference_url https://access.redhat.com/errata/RHSA-2019:1148
reference_id RHSA-2019:1148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1148
19
reference_url https://access.redhat.com/errata/RHSA-2019:1150
reference_id RHSA-2019:1150
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1150
20
reference_url https://access.redhat.com/errata/RHSA-2019:1235
reference_id RHSA-2019:1235
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1235
21
reference_url https://access.redhat.com/errata/RHSA-2020:2769
reference_id RHSA-2020:2769
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:2769
22
reference_url https://usn.ubuntu.com/3945-1/
reference_id USN-3945-1
reference_type
scores
url https://usn.ubuntu.com/3945-1/
fixed_packages
0
url pkg:gem/rubygems-update@2.7.9
purl pkg:gem/rubygems-update@2.7.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-f7x5-hz5f-hyd3
1
vulnerability VCID-ha3g-uyse-wybx
2
vulnerability VCID-jkwe-c323-3yez
3
vulnerability VCID-ky5r-bch5-m7dv
4
vulnerability VCID-t78a-dw4s-vqf5
5
vulnerability VCID-xgmc-a5rk-zqag
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.9
1
url pkg:gem/rubygems-update@3.0.2
purl pkg:gem/rubygems-update@3.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-f7x5-hz5f-hyd3
1
vulnerability VCID-ha3g-uyse-wybx
2
vulnerability VCID-jkwe-c323-3yez
3
vulnerability VCID-ky5r-bch5-m7dv
4
vulnerability VCID-t78a-dw4s-vqf5
5
vulnerability VCID-xgmc-a5rk-zqag
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@3.0.2
2
url pkg:gem/rubygems-update@3.0.3
purl pkg:gem/rubygems-update@3.0.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@3.0.3
aliases CVE-2019-8322, GHSA-mh37-8c3g-3fgc
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ha3g-uyse-wybx
2
url VCID-jkwe-c323-3yez
vulnerability_id VCID-jkwe-c323-3yez
summary 
Argument Injection or Modification
An issue was discovered in RubyGems. Since `Gem::UserInteraction#verbose` calls say without escaping, escape sequence injection is possible.
references
0
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8321.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8321.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-8321
reference_id
reference_type
scores
0
value 0.00326
scoring_system epss
scoring_elements 0.55597
published_at 2026-04-13T12:55:00Z
1
value 0.00326
scoring_system epss
scoring_elements 0.55614
published_at 2026-04-12T12:55:00Z
2
value 0.00326
scoring_system epss
scoring_elements 0.55634
published_at 2026-04-16T12:55:00Z
3
value 0.00326
scoring_system epss
scoring_elements 0.55625
published_at 2026-04-09T12:55:00Z
4
value 0.00326
scoring_system epss
scoring_elements 0.55622
published_at 2026-04-08T12:55:00Z
5
value 0.00326
scoring_system epss
scoring_elements 0.55593
published_at 2026-04-04T12:55:00Z
6
value 0.00326
scoring_system epss
scoring_elements 0.55616
published_at 2026-04-21T12:55:00Z
7
value 0.00326
scoring_system epss
scoring_elements 0.55638
published_at 2026-04-18T12:55:00Z
8
value 0.00326
scoring_system epss
scoring_elements 0.55571
published_at 2026-04-07T12:55:00Z
9
value 0.00326
scoring_system epss
scoring_elements 0.55568
published_at 2026-04-02T12:55:00Z
10
value 0.00332
scoring_system epss
scoring_elements 0.55992
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-8321
3
reference_url https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8320
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8320
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8321
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8321
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8322
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8322
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8323
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8323
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8324
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8324
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8325
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8325
10
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
11
reference_url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rubygems-update/CVE-2019-8321.yml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rubygems-update/CVE-2019-8321.yml
12
reference_url https://lists.debian.org/debian-lts-announce/2020/08/msg00027.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2020/08/msg00027.html
13
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1692514
reference_id 1692514
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1692514
14
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925987
reference_id 925987
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925987
15
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-8321
reference_id CVE-2019-8321
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-8321
16
reference_url https://github.com/advisories/GHSA-fr32-gr5c-xq5c
reference_id GHSA-fr32-gr5c-xq5c
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-fr32-gr5c-xq5c
17
reference_url https://access.redhat.com/errata/RHSA-2019:1148
reference_id RHSA-2019:1148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1148
18
reference_url https://access.redhat.com/errata/RHSA-2019:1150
reference_id RHSA-2019:1150
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1150
19
reference_url https://access.redhat.com/errata/RHSA-2019:1235
reference_id RHSA-2019:1235
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1235
20
reference_url https://access.redhat.com/errata/RHSA-2020:2769
reference_id RHSA-2020:2769
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:2769
21
reference_url https://usn.ubuntu.com/3945-1/
reference_id USN-3945-1
reference_type
scores
url https://usn.ubuntu.com/3945-1/
fixed_packages
0
url pkg:gem/rubygems-update@2.7.9
purl pkg:gem/rubygems-update@2.7.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-f7x5-hz5f-hyd3
1
vulnerability VCID-ha3g-uyse-wybx
2
vulnerability VCID-jkwe-c323-3yez
3
vulnerability VCID-ky5r-bch5-m7dv
4
vulnerability VCID-t78a-dw4s-vqf5
5
vulnerability VCID-xgmc-a5rk-zqag
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.9
1
url pkg:gem/rubygems-update@3.0.2
purl pkg:gem/rubygems-update@3.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-f7x5-hz5f-hyd3
1
vulnerability VCID-ha3g-uyse-wybx
2
vulnerability VCID-jkwe-c323-3yez
3
vulnerability VCID-ky5r-bch5-m7dv
4
vulnerability VCID-t78a-dw4s-vqf5
5
vulnerability VCID-xgmc-a5rk-zqag
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@3.0.2
2
url pkg:gem/rubygems-update@3.0.3
purl pkg:gem/rubygems-update@3.0.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@3.0.3
aliases CVE-2019-8321, GHSA-fr32-gr5c-xq5c
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jkwe-c323-3yez
3
url VCID-ky5r-bch5-m7dv
vulnerability_id VCID-ky5r-bch5-m7dv
summary 
Injection Vulnerability
An issue was discovered in RubyGems. `Gem::GemcutterUtilities#with_response` may output the API response to stdout as it is. Therefore, if the API side modifies the response, escape sequence injection may occur.
references
0
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8323.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8323.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-8323
reference_id
reference_type
scores
0
value 0.00326
scoring_system epss
scoring_elements 0.55597
published_at 2026-04-13T12:55:00Z
1
value 0.00326
scoring_system epss
scoring_elements 0.55614
published_at 2026-04-12T12:55:00Z
2
value 0.00326
scoring_system epss
scoring_elements 0.55634
published_at 2026-04-16T12:55:00Z
3
value 0.00326
scoring_system epss
scoring_elements 0.55625
published_at 2026-04-09T12:55:00Z
4
value 0.00326
scoring_system epss
scoring_elements 0.55622
published_at 2026-04-08T12:55:00Z
5
value 0.00326
scoring_system epss
scoring_elements 0.55571
published_at 2026-04-07T12:55:00Z
6
value 0.00326
scoring_system epss
scoring_elements 0.55593
published_at 2026-04-04T12:55:00Z
7
value 0.00326
scoring_system epss
scoring_elements 0.55568
published_at 2026-04-02T12:55:00Z
8
value 0.00326
scoring_system epss
scoring_elements 0.55616
published_at 2026-04-21T12:55:00Z
9
value 0.00326
scoring_system epss
scoring_elements 0.55638
published_at 2026-04-18T12:55:00Z
10
value 0.00332
scoring_system epss
scoring_elements 0.55992
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-8323
3
reference_url https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements
1
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
4
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8320
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8320
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8321
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8321
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8322
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8322
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8323
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8323
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8324
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8324
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8325
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8325
10
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
11
reference_url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rubygems-update/CVE-2019-8323.yml
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rubygems-update/CVE-2019-8323.yml
12
reference_url https://hackerone.com/reports/315081
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://hackerone.com/reports/315081
13
reference_url https://lists.debian.org/debian-lts-announce/2020/08/msg00027.html
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2020/08/msg00027.html
14
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1692519
reference_id 1692519
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1692519
15
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925987
reference_id 925987
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925987
16
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-8323
reference_id CVE-2019-8323
reference_type
scores
0
value 7.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-8323
17
reference_url https://github.com/advisories/GHSA-3h4r-pjv6-cph9
reference_id GHSA-3h4r-pjv6-cph9
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-3h4r-pjv6-cph9
18
reference_url https://access.redhat.com/errata/RHSA-2019:1148
reference_id RHSA-2019:1148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1148
19
reference_url https://access.redhat.com/errata/RHSA-2019:1150
reference_id RHSA-2019:1150
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1150
20
reference_url https://access.redhat.com/errata/RHSA-2019:1235
reference_id RHSA-2019:1235
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1235
21
reference_url https://access.redhat.com/errata/RHSA-2020:2769
reference_id RHSA-2020:2769
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:2769
22
reference_url https://usn.ubuntu.com/3945-1/
reference_id USN-3945-1
reference_type
scores
url https://usn.ubuntu.com/3945-1/
fixed_packages
0
url pkg:gem/rubygems-update@2.7.9
purl pkg:gem/rubygems-update@2.7.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-f7x5-hz5f-hyd3
1
vulnerability VCID-ha3g-uyse-wybx
2
vulnerability VCID-jkwe-c323-3yez
3
vulnerability VCID-ky5r-bch5-m7dv
4
vulnerability VCID-t78a-dw4s-vqf5
5
vulnerability VCID-xgmc-a5rk-zqag
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.9
1
url pkg:gem/rubygems-update@3.0.2
purl pkg:gem/rubygems-update@3.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-f7x5-hz5f-hyd3
1
vulnerability VCID-ha3g-uyse-wybx
2
vulnerability VCID-jkwe-c323-3yez
3
vulnerability VCID-ky5r-bch5-m7dv
4
vulnerability VCID-t78a-dw4s-vqf5
5
vulnerability VCID-xgmc-a5rk-zqag
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@3.0.2
2
url pkg:gem/rubygems-update@3.0.3
purl pkg:gem/rubygems-update@3.0.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@3.0.3
aliases CVE-2019-8323, GHSA-3h4r-pjv6-cph9
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ky5r-bch5-m7dv
4
url VCID-xgmc-a5rk-zqag
vulnerability_id VCID-xgmc-a5rk-zqag
summary 
Improper Input Validation
A crafted gem with a multi-line name is not handled correctly. Therefore, an attacker could inject arbitrary code to the stub line of gemspec, which is evaluated by `ensure_loadable_spec` during the pre-installation check.
references
0
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html
1
reference_url https://access.redhat.com/errata/RHSA-2019:1972
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2019:1972
2
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8324.json
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8324.json
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-8324
reference_id
reference_type
scores
0
value 0.00501
scoring_system epss
scoring_elements 0.66024
published_at 2026-04-12T12:55:00Z
1
value 0.00501
scoring_system epss
scoring_elements 0.66037
published_at 2026-04-11T12:55:00Z
2
value 0.00501
scoring_system epss
scoring_elements 0.65989
published_at 2026-04-04T12:55:00Z
3
value 0.00501
scoring_system epss
scoring_elements 0.66031
published_at 2026-04-21T12:55:00Z
4
value 0.00501
scoring_system epss
scoring_elements 0.66043
published_at 2026-04-18T12:55:00Z
5
value 0.00501
scoring_system epss
scoring_elements 0.66029
published_at 2026-04-16T12:55:00Z
6
value 0.00501
scoring_system epss
scoring_elements 0.65994
published_at 2026-04-13T12:55:00Z
7
value 0.00501
scoring_system epss
scoring_elements 0.66006
published_at 2026-04-08T12:55:00Z
8
value 0.00501
scoring_system epss
scoring_elements 0.65959
published_at 2026-04-02T12:55:00Z
9
value 0.00501
scoring_system epss
scoring_elements 0.65955
published_at 2026-04-07T12:55:00Z
10
value 0.00501
scoring_system epss
scoring_elements 0.66018
published_at 2026-04-09T12:55:00Z
11
value 0.00511
scoring_system epss
scoring_elements 0.66346
published_at 2026-04-01T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-8324
4
reference_url https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3
scoring_elements
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
2
value HIGH
scoring_system generic_textual
scoring_elements
url https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html
5
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8320
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8320
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8321
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8321
7
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8322
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8322
8
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8323
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8323
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8324
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8324
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8325
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8325
11
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
12
reference_url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rubygems-update/CVE-2019-8324.yml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rubygems-update/CVE-2019-8324.yml
13
reference_url https://lists.debian.org/debian-lts-announce/2020/08/msg00027.html
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2020/08/msg00027.html
14
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1692520
reference_id 1692520
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1692520
15
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925987
reference_id 925987
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925987
16
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-8324
reference_id CVE-2019-8324
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2019-8324
17
reference_url https://github.com/advisories/GHSA-76wm-422q-92mq
reference_id GHSA-76wm-422q-92mq
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-76wm-422q-92mq
18
reference_url https://access.redhat.com/errata/RHSA-2019:1148
reference_id RHSA-2019:1148
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1148
19
reference_url https://access.redhat.com/errata/RHSA-2019:1150
reference_id RHSA-2019:1150
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1150
20
reference_url https://access.redhat.com/errata/RHSA-2019:1151
reference_id RHSA-2019:1151
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1151
21
reference_url https://access.redhat.com/errata/RHSA-2019:1235
reference_id RHSA-2019:1235
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:1235
22
reference_url https://access.redhat.com/errata/RHSA-2020:2769
reference_id RHSA-2020:2769
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:2769
23
reference_url https://usn.ubuntu.com/3945-1/
reference_id USN-3945-1
reference_type
scores
url https://usn.ubuntu.com/3945-1/
fixed_packages
0
url pkg:gem/rubygems-update@2.7.9
purl pkg:gem/rubygems-update@2.7.9
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-f7x5-hz5f-hyd3
1
vulnerability VCID-ha3g-uyse-wybx
2
vulnerability VCID-jkwe-c323-3yez
3
vulnerability VCID-ky5r-bch5-m7dv
4
vulnerability VCID-t78a-dw4s-vqf5
5
vulnerability VCID-xgmc-a5rk-zqag
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.9
1
url pkg:gem/rubygems-update@3.0.2
purl pkg:gem/rubygems-update@3.0.2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-f7x5-hz5f-hyd3
1
vulnerability VCID-ha3g-uyse-wybx
2
vulnerability VCID-jkwe-c323-3yez
3
vulnerability VCID-ky5r-bch5-m7dv
4
vulnerability VCID-t78a-dw4s-vqf5
5
vulnerability VCID-xgmc-a5rk-zqag
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@3.0.2
2
url pkg:gem/rubygems-update@3.0.3
purl pkg:gem/rubygems-update@3.0.3
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@3.0.3
aliases CVE-2019-8324, GHSA-76wm-422q-92mq
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xgmc-a5rk-zqag
Fixing_vulnerabilities
0
url VCID-cde2-rv4n-tkau
vulnerability_id VCID-cde2-rv4n-tkau
summary 
Deserialization of Untrusted Data
rubygems-update is vulnerable to a remote code execution vulnerability. YAML deserialization of gem specifications can bypass class white lists. Specially crafted serialized objects can possibly be used to escalate to remote code execution.
references
0
reference_url http://blog.rubygems.org/2017/10/09/2.6.14-released.html
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url http://blog.rubygems.org/2017/10/09/2.6.14-released.html
1
reference_url http://blog.rubygems.org/2017/10/09/unsafe-object-deserialization-vulnerability.html
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url http://blog.rubygems.org/2017/10/09/unsafe-object-deserialization-vulnerability.html
2
reference_url https://access.redhat.com/errata/RHSA-2017:3485
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2017:3485
3
reference_url https://access.redhat.com/errata/RHSA-2018:0378
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:0378
4
reference_url https://access.redhat.com/errata/RHSA-2018:0583
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:0583
5
reference_url https://access.redhat.com/errata/RHSA-2018:0585
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHSA-2018:0585
6
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-0903.json
reference_id
reference_type
scores
0
value 5.6
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-0903.json
7
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-0903
reference_id
reference_type
scores
0
value 0.04623
scoring_system epss
scoring_elements 0.89264
published_at 2026-04-08T12:55:00Z
1
value 0.04623
scoring_system epss
scoring_elements 0.89268
published_at 2026-04-09T12:55:00Z
2
value 0.04623
scoring_system epss
scoring_elements 0.89277
published_at 2026-04-11T12:55:00Z
3
value 0.04623
scoring_system epss
scoring_elements 0.89246
published_at 2026-04-07T12:55:00Z
4
value 0.04623
scoring_system epss
scoring_elements 0.89243
published_at 2026-04-04T12:55:00Z
5
value 0.04623
scoring_system epss
scoring_elements 0.89229
published_at 2026-04-02T12:55:00Z
6
value 0.04623
scoring_system epss
scoring_elements 0.89223
published_at 2026-04-01T12:55:00Z
7
value 0.05545
scoring_system epss
scoring_elements 0.90285
published_at 2026-04-18T12:55:00Z
8
value 0.05545
scoring_system epss
scoring_elements 0.90281
published_at 2026-04-21T12:55:00Z
9
value 0.05545
scoring_system epss
scoring_elements 0.90268
published_at 2026-04-13T12:55:00Z
10
value 0.05545
scoring_system epss
scoring_elements 0.90274
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-0903
8
reference_url https://blog.rubygems.org/2017/10/09/unsafe-object-deserialization-vulnerability.html
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3
scoring_elements
url https://blog.rubygems.org/2017/10/09/unsafe-object-deserialization-vulnerability.html
9
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0898
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0898
10
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0903
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0903
11
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10784
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10784
12
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14033
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14033
13
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.8
scoring_system cvssv2
scoring_elements AV:N/AC:M/Au:N/C:P/I:P/A:P
1
value 6.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
14
reference_url https://github.com/rubygems/rubygems
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/rubygems/rubygems
15
reference_url https://github.com/rubygems/rubygems/commit/510b1638ac9bba3ceb7a5d73135dafff9e5bab49
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://github.com/rubygems/rubygems/commit/510b1638ac9bba3ceb7a5d73135dafff9e5bab49
16
reference_url https://hackerone.com/reports/274990
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://hackerone.com/reports/274990
17
reference_url https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html
18
reference_url https://usn.ubuntu.com/3553-1
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://usn.ubuntu.com/3553-1
19
reference_url https://usn.ubuntu.com/3553-1/
reference_id
reference_type
scores
url https://usn.ubuntu.com/3553-1/
20
reference_url https://usn.ubuntu.com/3685-1
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://usn.ubuntu.com/3685-1
21
reference_url https://usn.ubuntu.com/3685-1/
reference_id
reference_type
scores
url https://usn.ubuntu.com/3685-1/
22
reference_url https://web.archive.org/web/20200227143351/http://www.securityfocus.com/bid/101275
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://web.archive.org/web/20200227143351/http://www.securityfocus.com/bid/101275
23
reference_url https://www.debian.org/security/2017/dsa-4031
reference_id
reference_type
scores
0
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
1
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://www.debian.org/security/2017/dsa-4031
24
reference_url http://www.securityfocus.com/bid/101275
reference_id
reference_type
scores
url http://www.securityfocus.com/bid/101275
25
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1500488
reference_id 1500488
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1500488
26
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.0:*:*:*:*:*:*:*
27
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.0:preview2:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.0:preview2:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.0:preview2:*:*:*:*:*:*
28
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.0:preview2.1:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.0:preview2.1:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.0:preview2.1:*:*:*:*:*:*
29
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.0:preview2.2:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.0:preview2.2:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.0:preview2.2:*:*:*:*:*:*
30
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.0:rc1:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.0:rc1:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.0:rc1:*:*:*:*:*:*
31
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.0:rc2:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.0:rc2:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.0:rc2:*:*:*:*:*:*
32
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.1:*:*:*:*:*:*:*
33
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.10:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.10:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.10:*:*:*:*:*:*:*
34
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.11:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.11:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.11:*:*:*:*:*:*:*
35
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.12:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.12:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.12:*:*:*:*:*:*:*
36
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.13:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.13:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.13:*:*:*:*:*:*:*
37
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.14:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.14:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.14:*:*:*:*:*:*:*
38
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.15:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.15:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.15:*:*:*:*:*:*:*
39
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.16:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.16:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.16:*:*:*:*:*:*:*
40
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.17:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.17:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.17:*:*:*:*:*:*:*
41
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.2:*:*:*:*:*:*:*
42
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.3:*:*:*:*:*:*:*
43
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.4:*:*:*:*:*:*:*
44
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.5:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.5:*:*:*:*:*:*:*
45
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.6:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.6:*:*:*:*:*:*:*
46
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.7:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.7:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.7:*:*:*:*:*:*:*
47
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.8:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.8:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.8:*:*:*:*:*:*:*
48
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.9:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.0.9:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.0.9:*:*:*:*:*:*:*
49
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.1.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.0:*:*:*:*:*:*:*
50
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.0.rc.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.1.0.rc.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.0.rc.1:*:*:*:*:*:*:*
51
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.0.rc.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.1.0.rc.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.0.rc.2:*:*:*:*:*:*:*
52
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.1.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.1:*:*:*:*:*:*:*
53
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.10:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.1.10:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.10:*:*:*:*:*:*:*
54
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.11:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.1.11:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.11:*:*:*:*:*:*:*
55
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.1.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.2:*:*:*:*:*:*:*
56
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.1.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.3:*:*:*:*:*:*:*
57
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.1.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.4:*:*:*:*:*:*:*
58
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.5:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.1.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.5:*:*:*:*:*:*:*
59
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.6:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.1.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.6:*:*:*:*:*:*:*
60
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.7:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.1.7:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.7:*:*:*:*:*:*:*
61
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.8:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.1.8:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.8:*:*:*:*:*:*:*
62
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.9:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.1.9:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.1.9:*:*:*:*:*:*:*
63
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.2.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.2.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.2.0:*:*:*:*:*:*:*
64
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.2.0.preiew.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.2.0.preiew.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.2.0.preiew.1:*:*:*:*:*:*:*
65
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.2.0.rc.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.2.0.rc.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.2.0.rc.1:*:*:*:*:*:*:*
66
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.2.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.2.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.2.1:*:*:*:*:*:*:*
67
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.2.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.2.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.2.2:*:*:*:*:*:*:*
68
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.2.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.2.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.2.3:*:*:*:*:*:*:*
69
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.2.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.2.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.2.4:*:*:*:*:*:*:*
70
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.2.5:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.2.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.2.5:*:*:*:*:*:*:*
71
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.3.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.3.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.3.0:*:*:*:*:*:*:*
72
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.4.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.0:*:*:*:*:*:*:*
73
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.4.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.1:*:*:*:*:*:*:*
74
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.4.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.2:*:*:*:*:*:*:*
75
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.4.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.3:*:*:*:*:*:*:*
76
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.4.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.4:*:*:*:*:*:*:*
77
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.5:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.4.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.5:*:*:*:*:*:*:*
78
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.6:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.4.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.6:*:*:*:*:*:*:*
79
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.7:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.4.7:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.7:*:*:*:*:*:*:*
80
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.8:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.4.8:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.4.8:*:*:*:*:*:*:*
81
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.5.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.5.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.5.0:*:*:*:*:*:*:*
82
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.5.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.5.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.5.1:*:*:*:*:*:*:*
83
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.5.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.5.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.5.2:*:*:*:*:*:*:*
84
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.0:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.6.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.0:*:*:*:*:*:*:*
85
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.6.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.1:*:*:*:*:*:*:*
86
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.10:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.6.10:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.10:*:*:*:*:*:*:*
87
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.11:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.6.11:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.11:*:*:*:*:*:*:*
88
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.12:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.6.12:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.12:*:*:*:*:*:*:*
89
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.13:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.6.13:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.13:*:*:*:*:*:*:*
90
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.6.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.2:*:*:*:*:*:*:*
91
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.3:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.6.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.3:*:*:*:*:*:*:*
92
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.4:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.6.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.4:*:*:*:*:*:*:*
93
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.5:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.6.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.5:*:*:*:*:*:*:*
94
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.6:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.6.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.6:*:*:*:*:*:*:*
95
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.7:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.6.7:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.7:*:*:*:*:*:*:*
96
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.8:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.6.8:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.8:*:*:*:*:*:*:*
97
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.9:*:*:*:*:*:*:*
reference_id cpe:2.3:a:rubygems:rubygems:2.6.9:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:rubygems:2.6.9:*:*:*:*:*:*:*
98
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
99
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
100
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*
101
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
102
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
103
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
104
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
105
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
106
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
107
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*
108
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*
109
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*
110
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*
111
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
112
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
113
reference_url https://nvd.nist.gov/vuln/detail/CVE-2017-0903
reference_id CVE-2017-0903
reference_type
scores
0
value 7.5
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:N/C:P/I:P/A:P
1
value 9.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
2
value 9.8
scoring_system cvssv3.1
scoring_elements CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
3
value CRITICAL
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2017-0903
114
reference_url https://github.com/advisories/GHSA-mqwr-4qf2-2hcv
reference_id GHSA-mqwr-4qf2-2hcv
reference_type
scores
0
value CRITICAL
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-mqwr-4qf2-2hcv
115
reference_url https://usn.ubuntu.com/3685-2/
reference_id USN-3685-2
reference_type
scores
url https://usn.ubuntu.com/3685-2/
fixed_packages
0
url pkg:gem/rubygems-update@2.6.14
purl pkg:gem/rubygems-update@2.6.14
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-f7x5-hz5f-hyd3
1
vulnerability VCID-ha3g-uyse-wybx
2
vulnerability VCID-jkwe-c323-3yez
3
vulnerability VCID-ky5r-bch5-m7dv
4
vulnerability VCID-xgmc-a5rk-zqag
resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.14
aliases CVE-2017-0903, GHSA-mqwr-4qf2-2hcv
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cde2-rv4n-tkau
Risk_score4.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.14