Django REST framework

Lookup for vulnerable packages by Package URL.

Purl pkg:ebuild/dev-lang/ruby@2.0.0_p598

Type ebuild

Namespace dev-lang

Name ruby

Version 2.0.0_p598

Qualifiers

Subpath

Is_vulnerable false

Next_non_vulnerable_version 2.2.8

Latest_non_vulnerable_version 3.2.2

Affected_by_vulnerabilities

Fixing_vulnerabilities

url VCID-1bdw-9rs5-6ycg

vulnerability_id VCID-1bdw-9rs5-6ycg

summary several

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4164.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4164.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-4164

reference_id

reference_type

scores

value	0.11958
scoring_system	epss
scoring_elements	0.9372
published_at	2026-04-01T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93729
published_at	2026-04-02T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.9374
published_at	2026-04-04T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93743
published_at	2026-04-07T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93752
published_at	2026-04-08T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93755
published_at	2026-04-09T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93759
published_at	2026-04-13T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93781
published_at	2026-04-16T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93787
published_at	2026-04-18T12:55:00Z

value	0.11958
scoring_system	epss
scoring_elements	0.93789
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-4164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1821
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1821

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4073
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4073

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4164
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4164

reference_url	https://www.ruby-lang.org/en/news/2013/11/22/heap-overflow-in-floating-point-parsing-cve-2013-4164
reference_id
reference_type
scores
url	https://www.ruby-lang.org/en/news/2013/11/22/heap-overflow-in-floating-point-parsing-cve-2013-4164

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1033460
reference_id	1033460
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1033460

reference_url	https://security.gentoo.org/glsa/201412-27
reference_id	GLSA-201412-27
reference_type
scores
url	https://security.gentoo.org/glsa/201412-27

reference_url	https://access.redhat.com/errata/RHSA-2013:1763
reference_id	RHSA-2013:1763
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1763

reference_url	https://access.redhat.com/errata/RHSA-2013:1764
reference_id	RHSA-2013:1764
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1764

reference_url	https://access.redhat.com/errata/RHSA-2013:1767
reference_id	RHSA-2013:1767
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1767

reference_url	https://access.redhat.com/errata/RHSA-2014:0011
reference_id	RHSA-2014:0011
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:0011

reference_url	https://access.redhat.com/errata/RHSA-2014:0215
reference_id	RHSA-2014:0215
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:0215

reference_url	https://usn.ubuntu.com/2035-1/
reference_id	USN-2035-1
reference_type
scores
url	https://usn.ubuntu.com/2035-1/

fixed_packages

url	pkg:ebuild/dev-lang/ruby@2.0.0_p598
purl	pkg:ebuild/dev-lang/ruby@2.0.0_p598
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/ruby@2.0.0_p598

aliases CVE-2013-4164, GHSA-j98q-m2w8-57rc, OSV-100113

risk_score 0.2

exploitability 2.0

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1bdw-9rs5-6ycg

url VCID-3kkj-nt28-8qg6

vulnerability_id VCID-3kkj-nt28-8qg6

summary

Multiple vulnerabilities have been found in Ruby, allowing
    context-dependent attackers to cause a Denial of Service condition.

references

reference_url	http://rhn.redhat.com/errata/RHSA-2013-0129.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2013-0129.html

reference_url	http://rhn.redhat.com/errata/RHSA-2013-0612.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2013-0612.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4481.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4481.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-4481

reference_id

reference_type

scores

value	0.00488
scoring_system	epss
scoring_elements	0.6551
published_at	2026-04-21T12:55:00Z

value	0.00488
scoring_system	epss
scoring_elements	0.65525
published_at	2026-04-18T12:55:00Z

value	0.00488
scoring_system	epss
scoring_elements	0.65395
published_at	2026-04-01T12:55:00Z

value	0.00488
scoring_system	epss
scoring_elements	0.65443
published_at	2026-04-02T12:55:00Z

value	0.00488
scoring_system	epss
scoring_elements	0.65471
published_at	2026-04-04T12:55:00Z

value	0.00488
scoring_system	epss
scoring_elements	0.65435
published_at	2026-04-07T12:55:00Z

value	0.00488
scoring_system	epss
scoring_elements	0.65488
published_at	2026-04-08T12:55:00Z

value	0.00488
scoring_system	epss
scoring_elements	0.655
published_at	2026-04-09T12:55:00Z

value	0.00488
scoring_system	epss
scoring_elements	0.65518
published_at	2026-04-11T12:55:00Z

value	0.00488
scoring_system	epss
scoring_elements	0.65505
published_at	2026-04-12T12:55:00Z

value	0.00488
scoring_system	epss
scoring_elements	0.65477
published_at	2026-04-13T12:55:00Z

value	0.00488
scoring_system	epss
scoring_elements	0.65513
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-4481

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:S/C:C/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0294
reference_id
reference_type
scores
url	https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0294

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2013:124
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2013:124

reference_url	http://www.openwall.com/lists/oss-security/2012/10/05/2
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2012/10/05/2

reference_url	http://www.openwall.com/lists/oss-security/2012/10/05/4
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2012/10/05/4

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=863484
reference_id	863484
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=863484

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.7:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.8.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.7:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2012-4481

reference_id

CVE-2012-4481

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:P/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2012-4481

reference_url	https://security.gentoo.org/glsa/201412-27
reference_id	GLSA-201412-27
reference_type
scores
url	https://security.gentoo.org/glsa/201412-27

reference_url	https://access.redhat.com/errata/RHSA-2013:0129
reference_id	RHSA-2013:0129
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0129

reference_url	https://access.redhat.com/errata/RHSA-2013:0612
reference_id	RHSA-2013:0612
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0612

reference_url	https://usn.ubuntu.com/1603-1/
reference_id	USN-1603-1
reference_type
scores
url	https://usn.ubuntu.com/1603-1/

reference_url	https://usn.ubuntu.com/1603-2/
reference_id	USN-1603-2
reference_type
scores
url	https://usn.ubuntu.com/1603-2/

fixed_packages

url	pkg:ebuild/dev-lang/ruby@2.0.0_p598
purl	pkg:ebuild/dev-lang/ruby@2.0.0_p598
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/ruby@2.0.0_p598

aliases CVE-2012-4481

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3kkj-nt28-8qg6

url VCID-4qm3-nbsk-73he

vulnerability_id VCID-4qm3-nbsk-73he

summary

Multiple vulnerabilities have been found in Ruby, allowing
    context-dependent attackers to cause a Denial of Service condition.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4815.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4815.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-4815

reference_id

reference_type

scores

value	0.01962
scoring_system	epss
scoring_elements	0.83445
published_at	2026-04-01T12:55:00Z

value	0.01962
scoring_system	epss
scoring_elements	0.83458
published_at	2026-04-02T12:55:00Z

value	0.01962
scoring_system	epss
scoring_elements	0.83472
published_at	2026-04-04T12:55:00Z

value	0.01962
scoring_system	epss
scoring_elements	0.8347
published_at	2026-04-07T12:55:00Z

value	0.01962
scoring_system	epss
scoring_elements	0.83495
published_at	2026-04-08T12:55:00Z

value	0.01962
scoring_system	epss
scoring_elements	0.83504
published_at	2026-04-09T12:55:00Z

value	0.01962
scoring_system	epss
scoring_elements	0.83519
published_at	2026-04-11T12:55:00Z

value	0.01962
scoring_system	epss
scoring_elements	0.83513
published_at	2026-04-12T12:55:00Z

value	0.01962
scoring_system	epss
scoring_elements	0.83509
published_at	2026-04-13T12:55:00Z

value	0.01962
scoring_system	epss
scoring_elements	0.83544
published_at	2026-04-16T12:55:00Z

value	0.01962
scoring_system	epss
scoring_elements	0.83545
published_at	2026-04-18T12:55:00Z

value	0.01962
scoring_system	epss
scoring_elements	0.83546
published_at	2026-04-21T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-4815

reference_url	https://www.ruby-lang.org/en/news/2011/12/28/denial-of-service-attack-was-found-for-rubys-hash-algorithm-cve-2011-4815
reference_id
reference_type
scores
url	https://www.ruby-lang.org/en/news/2011/12/28/denial-of-service-attack-was-found-for-rubys-hash-algorithm-cve-2011-4815

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=750564
reference_id	750564
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=750564

reference_url	https://security.gentoo.org/glsa/201412-27
reference_id	GLSA-201412-27
reference_type
scores
url	https://security.gentoo.org/glsa/201412-27

reference_url	https://access.redhat.com/errata/RHSA-2012:0069
reference_id	RHSA-2012:0069
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0069

reference_url	https://access.redhat.com/errata/RHSA-2012:0070
reference_id	RHSA-2012:0070
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0070

reference_url	https://access.redhat.com/errata/RHSA-2026:7305
reference_id	RHSA-2026:7305
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7305

reference_url	https://access.redhat.com/errata/RHSA-2026:7307
reference_id	RHSA-2026:7307
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7307

reference_url	https://access.redhat.com/errata/RHSA-2026:8838
reference_id	RHSA-2026:8838
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8838

reference_url	https://usn.ubuntu.com/1377-1/
reference_id	USN-1377-1
reference_type
scores
url	https://usn.ubuntu.com/1377-1/

fixed_packages

url	pkg:ebuild/dev-lang/ruby@2.0.0_p598
purl	pkg:ebuild/dev-lang/ruby@2.0.0_p598
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/ruby@2.0.0_p598

aliases CVE-2011-4815, GHSA-xpr8-vpc7-7vfc, OSV-78118

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-4qm3-nbsk-73he

url VCID-5xez-skrj-b3h4

vulnerability_id VCID-5xez-skrj-b3h4

summary

Entity expansion DoS vulnerability in REXML
`lib/rexml/text.rb` in the REXML parser allows remote attackers to cause a denial of service (memory consumption and crash) via crafted text nodes in an XML document, aka an XML Entity Expansion (XEE) attack.

references

reference_url

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702525

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702525

reference_url

http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00001.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00001.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00015.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00015.html

reference_url

http://lists.opensuse.org/opensuse-updates/2013-04/msg00034.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-updates/2013-04/msg00034.html

reference_url

http://lists.opensuse.org/opensuse-updates/2013-04/msg00036.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-updates/2013-04/msg00036.html

reference_url	http://rhn.redhat.com/errata/RHSA-2013-0611.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2013-0611.html

reference_url	http://rhn.redhat.com/errata/RHSA-2013-0612.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2013-0612.html

reference_url	http://rhn.redhat.com/errata/RHSA-2013-1028.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2013-1028.html

reference_url

http://rhn.redhat.com/errata/RHSA-2013-1147.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-1147.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1821.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1821.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-1821

reference_id

reference_type

scores

value	0.20672
scoring_system	epss
scoring_elements	0.95603
published_at	2026-04-21T12:55:00Z

value	0.20672
scoring_system	epss
scoring_elements	0.95557
published_at	2026-04-01T12:55:00Z

value	0.20672
scoring_system	epss
scoring_elements	0.95565
published_at	2026-04-02T12:55:00Z

value	0.20672
scoring_system	epss
scoring_elements	0.9557
published_at	2026-04-04T12:55:00Z

value	0.20672
scoring_system	epss
scoring_elements	0.95573
published_at	2026-04-07T12:55:00Z

value	0.20672
scoring_system	epss
scoring_elements	0.9558
published_at	2026-04-08T12:55:00Z

value	0.20672
scoring_system	epss
scoring_elements	0.95583
published_at	2026-04-09T12:55:00Z

value	0.20672
scoring_system	epss
scoring_elements	0.95587
published_at	2026-04-11T12:55:00Z

value	0.20672
scoring_system	epss
scoring_elements	0.95588
published_at	2026-04-12T12:55:00Z

value	0.20672
scoring_system	epss
scoring_elements	0.9559
published_at	2026-04-13T12:55:00Z

value	0.20672
scoring_system	epss
scoring_elements	0.95598
published_at	2026-04-16T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-1821

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=914716

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://bugzilla.redhat.com/show_bug.cgi?id=914716

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1821
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1821

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4073
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4073

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4164
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4164

reference_url	http://secunia.com/advisories/52783
reference_id
reference_type
scores
url	http://secunia.com/advisories/52783

reference_url	http://secunia.com/advisories/52902
reference_id
reference_type
scores
url	http://secunia.com/advisories/52902

reference_url

https://github.com/jruby/jruby

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/jruby/jruby

reference_url	https://github.com/victims/victims-cve-db/blob/master/database/java/2013/1821.yaml
reference_id
reference_type
scores
url	https://github.com/victims/victims-cve-db/blob/master/database/java/2013/1821.yaml

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2013-1821

reference_id

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:N/A:P

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2013-1821

reference_url

http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=revision&revision=39384

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=revision&revision=39384

reference_url

https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0092

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0092

reference_url

https://www.jruby.org/2013/02/21/jruby-1-7-3.html

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.jruby.org/2013/02/21/jruby-1-7-3.html

reference_url	https://www.ruby-lang.org/en/news/2013/02/22/rexml-dos-2013-02-22
reference_id
reference_type
scores
url	https://www.ruby-lang.org/en/news/2013/02/22/rexml-dos-2013-02-22

reference_url

http://www.debian.org/security/2013/dsa-2738

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.debian.org/security/2013/dsa-2738

reference_url

http://www.debian.org/security/2013/dsa-2809

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.debian.org/security/2013/dsa-2809

reference_url

http://www.mandriva.com/security/advisories?name=MDVSA-2013:124

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.mandriva.com/security/advisories?name=MDVSA-2013:124

reference_url

http://www.openwall.com/lists/oss-security/2013/03/06/5

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2013/03/06/5

reference_url	http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html

reference_url

http://www.ruby-lang.org/en/news/2013/02/22/rexml-dos-2013-02-22

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.ruby-lang.org/en/news/2013/02/22/rexml-dos-2013-02-22

reference_url	http://www.ruby-lang.org/en/news/2013/02/22/rexml-dos-2013-02-22/
reference_id
reference_type
scores
url	http://www.ruby-lang.org/en/news/2013/02/22/rexml-dos-2013-02-22/

reference_url	http://www.securityfocus.com/bid/58141
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/58141

reference_url

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.426862

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.426862

reference_url

http://www.ubuntu.com/usn/USN-1780-1

reference_id

reference_type

scores

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.ubuntu.com/usn/USN-1780-1

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.2:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p0::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p0::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p0::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p125::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p125::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p125::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p194::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p194::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p194::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p286::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p286::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p286::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p383::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p383::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p383::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:rc1::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:rc1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:rc1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:rc2::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:rc2::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:rc2::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby::p385::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby::p385::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby::p385::::::*

reference_url

https://github.com/advisories/GHSA-hgg7-cghq-xhf4

reference_id

GHSA-hgg7-cghq-xhf4

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-hgg7-cghq-xhf4

reference_url	https://security.gentoo.org/glsa/201412-27
reference_id	GLSA-201412-27
reference_type
scores
url	https://security.gentoo.org/glsa/201412-27

reference_url	https://access.redhat.com/errata/RHSA-2013:0611
reference_id	RHSA-2013:0611
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0611

reference_url	https://access.redhat.com/errata/RHSA-2013:0612
reference_id	RHSA-2013:0612
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0612

reference_url	https://access.redhat.com/errata/RHSA-2013:1028
reference_id	RHSA-2013:1028
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1028

reference_url	https://access.redhat.com/errata/RHSA-2013:1147
reference_id	RHSA-2013:1147
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1147

reference_url	https://access.redhat.com/errata/RHSA-2013:1185
reference_id	RHSA-2013:1185
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1185

reference_url	https://access.redhat.com/errata/RHSA-2026:7305
reference_id	RHSA-2026:7305
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7305

reference_url	https://access.redhat.com/errata/RHSA-2026:7307
reference_id	RHSA-2026:7307
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7307

reference_url	https://access.redhat.com/errata/RHSA-2026:8838
reference_id	RHSA-2026:8838
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8838

reference_url	https://usn.ubuntu.com/1780-1/
reference_id	USN-1780-1
reference_type
scores
url	https://usn.ubuntu.com/1780-1/

fixed_packages

url	pkg:ebuild/dev-lang/ruby@2.0.0_p598
purl	pkg:ebuild/dev-lang/ruby@2.0.0_p598
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/ruby@2.0.0_p598

aliases CVE-2013-1821, GHSA-hgg7-cghq-xhf4, OSV-90587

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-5xez-skrj-b3h4

url VCID-ebq1-gkhe-pua7

vulnerability_id VCID-ebq1-gkhe-pua7

summary

Denial of Service and SQL Injection
This package allows remote attackers to cause a denial of service (resource consumption) or bypass the mass assignment protection mechanism via a crafted JSON document that triggers the creation of arbitrary Ruby symbols or certain internal objects, as demonstrated by conducting a SQL injection attack against Ruby on Rails, aka.

references

reference_url

http://lists.apple.com/archives/security-announce/2013/Oct/msg00006.html

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://lists.apple.com/archives/security-announce/2013/Oct/msg00006.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00001.html

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00001.html

reference_url

http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00015.html

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00015.html

reference_url

http://lists.opensuse.org/opensuse-updates/2013-04/msg00034.html

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://lists.opensuse.org/opensuse-updates/2013-04/msg00034.html

reference_url

http://rhn.redhat.com/errata/RHSA-2013-0686.html

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-0686.html

reference_url

http://rhn.redhat.com/errata/RHSA-2013-0701.html

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-0701.html

reference_url

http://rhn.redhat.com/errata/RHSA-2013-1028.html

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-1028.html

reference_url

http://rhn.redhat.com/errata/RHSA-2013-1147.html

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://rhn.redhat.com/errata/RHSA-2013-1147.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0269.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0269.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-0269

reference_id

reference_type

scores

value	0.17317
scoring_system	epss
scoring_elements	0.9502
published_at	2026-04-02T12:55:00Z

value	0.17317
scoring_system	epss
scoring_elements	0.95059
published_at	2026-04-21T12:55:00Z

value	0.17317
scoring_system	epss
scoring_elements	0.95057
published_at	2026-04-18T12:55:00Z

value	0.17317
scoring_system	epss
scoring_elements	0.95054
published_at	2026-04-16T12:55:00Z

value	0.17317
scoring_system	epss
scoring_elements	0.95041
published_at	2026-04-11T12:55:00Z

value	0.17317
scoring_system	epss
scoring_elements	0.95036
published_at	2026-04-09T12:55:00Z

value	0.17317
scoring_system	epss
scoring_elements	0.95032
published_at	2026-04-08T12:55:00Z

value	0.17317
scoring_system	epss
scoring_elements	0.95024
published_at	2026-04-07T12:55:00Z

value	0.17317
scoring_system	epss
scoring_elements	0.95009
published_at	2026-04-01T12:55:00Z

value	0.17317
scoring_system	epss
scoring_elements	0.95021
published_at	2026-04-04T12:55:00Z

value	0.17317
scoring_system	epss
scoring_elements	0.95045
published_at	2026-04-13T12:55:00Z

value	0.17317
scoring_system	epss
scoring_elements	0.95043
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-0269

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-0269
reference_id
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-0269

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0269
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0269

reference_url	http://secunia.com/advisories/52075
reference_id
reference_type
scores
url	http://secunia.com/advisories/52075

reference_url	http://secunia.com/advisories/52774
reference_id
reference_type
scores
url	http://secunia.com/advisories/52774

reference_url	http://secunia.com/advisories/52902
reference_id
reference_type
scores
url	http://secunia.com/advisories/52902

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/82010

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/82010

reference_url

https://github.com/flori/json

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/flori/json

reference_url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/json/CVE-2013-0269.yml

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/json/CVE-2013-0269.yml

reference_url	https://groups.google.com/forum/?fromgroups=#!topic/rubyonrails-security/4_YvCpLzL58
reference_id
reference_type
scores
url	https://groups.google.com/forum/?fromgroups=#!topic/rubyonrails-security/4_YvCpLzL58

reference_url

https://groups.google.com/group/rubyonrails-security/msg/d8e0db6e08c81428?dmode=source&output=gplain

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/group/rubyonrails-security/msg/d8e0db6e08c81428?dmode=source&output=gplain

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2013-0269

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:P/A:P

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2013-0269

reference_url	http://spreecommerce.com/blog/multiple-security-vulnerabilities-fixed
reference_id
reference_type
scores
url	http://spreecommerce.com/blog/multiple-security-vulnerabilities-fixed

reference_url	https://puppet.com/security/cve/cve-2013-0269
reference_id
reference_type
scores
url	https://puppet.com/security/cve/cve-2013-0269

reference_url

https://web.archive.org/web/20130228082541/http://www.securityfocus.com/bid/57899

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20130228082541/http://www.securityfocus.com/bid/57899

reference_url

https://web.archive.org/web/20160331131233/http://spreecommerce.com/blog/multiple-security-vulnerabilities-fixed

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20160331131233/http://spreecommerce.com/blog/multiple-security-vulnerabilities-fixed

reference_url

https://web.archive.org/web/20160808163226/https://puppet.com/security/cve/cve-2013-0269

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://web.archive.org/web/20160808163226/https://puppet.com/security/cve/cve-2013-0269

reference_url

http://weblog.rubyonrails.org/2013/2/11/SEC-ANN-Rails-3-2-12-3-1-11-and-2-3-17-have-been-released

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://weblog.rubyonrails.org/2013/2/11/SEC-ANN-Rails-3-2-12-3-1-11-and-2-3-17-have-been-released

reference_url	http://weblog.rubyonrails.org/2013/2/11/SEC-ANN-Rails-3-2-12-3-1-11-and-2-3-17-have-been-released/
reference_id
reference_type
scores
url	http://weblog.rubyonrails.org/2013/2/11/SEC-ANN-Rails-3-2-12-3-1-11-and-2-3-17-have-been-released/

reference_url

http://www.openwall.com/lists/oss-security/2013/02/11/7

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2013/02/11/7

reference_url

http://www.openwall.com/lists/oss-security/2013/02/11/8

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2013/02/11/8

reference_url	http://www.osvdb.org/90074
reference_id
reference_type
scores
url	http://www.osvdb.org/90074

reference_url	http://www.securityfocus.com/bid/57899
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/57899

reference_url

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.426862

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.426862

reference_url

http://www.ubuntu.com/usn/USN-1733-1

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.ubuntu.com/usn/USN-1733-1

reference_url

http://www.zweitag.de/en/blog/ruby-on-rails-vulnerable-to-mass-assignment-and-sql-injection

reference_id

reference_type

scores

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.zweitag.de/en/blog/ruby-on-rails-vulnerable-to-mass-assignment-and-sql-injection

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700436
reference_id	700436
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700436

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=909029
reference_id	909029
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=909029

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.5.0:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.5.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.5.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.5.1:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.5.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.5.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.5.2:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.5.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.5.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.5.3:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.5.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.5.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.5.4:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.5.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.5.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.6.0:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.6.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.6.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.6.1:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.6.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.6.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.6.2:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.6.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.6.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.6.3:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.6.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.6.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.6.4:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.6.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.6.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.6.5:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.6.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.6.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.6.6:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.6.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.6.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.6.7:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.6.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.6.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.7.0:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.7.1:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.7.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.7.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.7.2:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.7.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.7.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.7.3:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.7.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.7.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.7.4:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.7.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.7.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.7.5:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.7.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.7.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.7.6:::::::*
reference_id	cpe:2.3:a:rubygems:json_gem:1.7.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:rubygems:json_gem:1.7.6:::::::*

reference_url

https://github.com/advisories/GHSA-x457-cw4h-hq5f

reference_id

GHSA-x457-cw4h-hq5f

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-x457-cw4h-hq5f

reference_url	https://security.gentoo.org/glsa/201412-27
reference_id	GLSA-201412-27
reference_type
scores
url	https://security.gentoo.org/glsa/201412-27

reference_url	https://access.redhat.com/errata/RHSA-2013:0686
reference_id	RHSA-2013:0686
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0686

reference_url	https://access.redhat.com/errata/RHSA-2013:0701
reference_id	RHSA-2013:0701
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:0701

reference_url	https://access.redhat.com/errata/RHSA-2013:1028
reference_id	RHSA-2013:1028
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1028

reference_url	https://access.redhat.com/errata/RHSA-2013:1147
reference_id	RHSA-2013:1147
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1147

reference_url	https://access.redhat.com/errata/RHSA-2013:1185
reference_id	RHSA-2013:1185
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2013:1185

reference_url	https://usn.ubuntu.com/1733-1/
reference_id	USN-1733-1
reference_type
scores
url	https://usn.ubuntu.com/1733-1/

fixed_packages

url	pkg:ebuild/dev-lang/ruby@2.0.0_p598
purl	pkg:ebuild/dev-lang/ruby@2.0.0_p598
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/ruby@2.0.0_p598

aliases CVE-2013-0269, GHSA-x457-cw4h-hq5f, OSV-101137

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ebq1-gkhe-pua7

url VCID-g7ju-q41v-wyhd

vulnerability_id VCID-g7ju-q41v-wyhd

summary security update

references

reference_url	http://advisories.mageia.org/MGASA-2014-0472.html
reference_id
reference_type
scores
url	http://advisories.mageia.org/MGASA-2014-0472.html

reference_url	http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html

reference_url	http://lists.opensuse.org/opensuse-updates/2014-12/msg00035.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-updates/2014-12/msg00035.html

reference_url	http://lists.opensuse.org/opensuse-updates/2015-01/msg00000.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-updates/2015-01/msg00000.html

reference_url	http://lists.opensuse.org/opensuse-updates/2015-01/msg00004.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-updates/2015-01/msg00004.html

reference_url	http://rhn.redhat.com/errata/RHSA-2014-1911.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2014-1911.html

reference_url	http://rhn.redhat.com/errata/RHSA-2014-1912.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2014-1912.html

reference_url	http://rhn.redhat.com/errata/RHSA-2014-1913.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2014-1913.html

reference_url	http://rhn.redhat.com/errata/RHSA-2014-1914.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2014-1914.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8090.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8090.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8090

reference_id

reference_type

scores

value	0.10488
scoring_system	epss
scoring_elements	0.93275
published_at	2026-04-21T12:55:00Z

value	0.10488
scoring_system	epss
scoring_elements	0.93218
published_at	2026-04-01T12:55:00Z

value	0.10488
scoring_system	epss
scoring_elements	0.93226
published_at	2026-04-02T12:55:00Z

value	0.10488
scoring_system	epss
scoring_elements	0.93231
published_at	2026-04-04T12:55:00Z

value	0.10488
scoring_system	epss
scoring_elements	0.93229
published_at	2026-04-07T12:55:00Z

value	0.10488
scoring_system	epss
scoring_elements	0.93238
published_at	2026-04-08T12:55:00Z

value	0.10488
scoring_system	epss
scoring_elements	0.93242
published_at	2026-04-09T12:55:00Z

value	0.10488
scoring_system	epss
scoring_elements	0.93246
published_at	2026-04-11T12:55:00Z

value	0.10488
scoring_system	epss
scoring_elements	0.93244
published_at	2026-04-12T12:55:00Z

value	0.10488
scoring_system	epss
scoring_elements	0.93245
published_at	2026-04-13T12:55:00Z

value	0.10488
scoring_system	epss
scoring_elements	0.93263
published_at	2026-04-16T12:55:00Z

value	0.10488
scoring_system	epss
scoring_elements	0.93267
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8090

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4975
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4975

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8080
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8080

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8090
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8090

reference_url	http://secunia.com/advisories/59948
reference_id
reference_type
scores
url	http://secunia.com/advisories/59948

reference_url	http://secunia.com/advisories/62050
reference_id
reference_type
scores
url	http://secunia.com/advisories/62050

reference_url	http://secunia.com/advisories/62748
reference_id
reference_type
scores
url	http://secunia.com/advisories/62748

reference_url	https://support.apple.com/HT205267
reference_id
reference_type
scores
url	https://support.apple.com/HT205267

reference_url	https://www.ruby-lang.org/en/news/2014/11/13/rexml-dos-cve-2014-8090
reference_id
reference_type
scores
url	https://www.ruby-lang.org/en/news/2014/11/13/rexml-dos-cve-2014-8090

reference_url	https://www.ruby-lang.org/en/news/2014/11/13/rexml-dos-cve-2014-8090/
reference_id
reference_type
scores
url	https://www.ruby-lang.org/en/news/2014/11/13/rexml-dos-cve-2014-8090/

reference_url	http://www.debian.org/security/2015/dsa-3157
reference_id
reference_type
scores
url	http://www.debian.org/security/2015/dsa-3157

reference_url	http://www.debian.org/security/2015/dsa-3159
reference_id
reference_type
scores
url	http://www.debian.org/security/2015/dsa-3159

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2015:129
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2015:129

reference_url	http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

reference_url	http://www.securityfocus.com/bid/71230
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/71230

reference_url	http://www.ubuntu.com/usn/USN-2412-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-2412-1

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1159927
reference_id	1159927
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1159927

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p0::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p0::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p0::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p125::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p125::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p125::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p194::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p194::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p194::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p286::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p286::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p286::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p383::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p383::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p383::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p385::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p385::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p385::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p392::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p392::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p392::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p426::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p426::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p426::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p429::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p429::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p429::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p448::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p448::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p448::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p545::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p545::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p545::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p547::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p547::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p547::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p0::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:p0::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p0::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p195::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:p195::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p195::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p247::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:p247::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p247::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p451::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:p451::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p451::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p481::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:p481::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p481::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p576::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:p576::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p576::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p594::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:p594::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p594::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.1:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.2:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.3:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.4:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby::p550::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby::p550::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby::p550::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2014-8090

reference_id

CVE-2014-8090

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:N/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2014-8090

reference_url	https://security.gentoo.org/glsa/201412-27
reference_id	GLSA-201412-27
reference_type
scores
url	https://security.gentoo.org/glsa/201412-27

reference_url	https://access.redhat.com/errata/RHSA-2014:1911
reference_id	RHSA-2014:1911
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1911

reference_url	https://access.redhat.com/errata/RHSA-2014:1912
reference_id	RHSA-2014:1912
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1912

reference_url	https://access.redhat.com/errata/RHSA-2014:1913
reference_id	RHSA-2014:1913
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1913

reference_url	https://access.redhat.com/errata/RHSA-2014:1914
reference_id	RHSA-2014:1914
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1914

reference_url	https://access.redhat.com/errata/RHSA-2026:7305
reference_id	RHSA-2026:7305
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7305

reference_url	https://access.redhat.com/errata/RHSA-2026:7307
reference_id	RHSA-2026:7307
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7307

reference_url	https://access.redhat.com/errata/RHSA-2026:8838
reference_id	RHSA-2026:8838
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8838

reference_url	https://usn.ubuntu.com/2412-1/
reference_id	USN-2412-1
reference_type
scores
url	https://usn.ubuntu.com/2412-1/

fixed_packages

url	pkg:ebuild/dev-lang/ruby@2.0.0_p598
purl	pkg:ebuild/dev-lang/ruby@2.0.0_p598
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/ruby@2.0.0_p598

aliases CVE-2014-8090, GHSA-2x97-vvh4-m4q4, OSV-114641

risk_score 2.2

exploitability 0.5

weighted_severity 4.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g7ju-q41v-wyhd

url VCID-jj3a-fpsa-a7at

vulnerability_id VCID-jj3a-fpsa-a7at

summary

Multiple vulnerabilities have been found in Ruby, allowing
    context-dependent attackers to cause a Denial of Service condition.

references

reference_url	http://2012.appsec-forum.ch/conferences/#c17
reference_id
reference_type
scores
url	http://2012.appsec-forum.ch/conferences/#c17

reference_url	http://asfws12.files.wordpress.com/2012/11/asfws2012-jean_philippe_aumasson-martin_bosslet-hash_flooding_dos_reloaded.pdf
reference_id
reference_type
scores
url	http://asfws12.files.wordpress.com/2012/11/asfws2012-jean_philippe_aumasson-martin_bosslet-hash_flooding_dos_reloaded.pdf

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5371.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-5371.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2012-5371

reference_id

reference_type

scores

value	0.01793
scoring_system	epss
scoring_elements	0.82797
published_at	2026-04-21T12:55:00Z

value	0.01793
scoring_system	epss
scoring_elements	0.82691
published_at	2026-04-01T12:55:00Z

value	0.01793
scoring_system	epss
scoring_elements	0.82707
published_at	2026-04-02T12:55:00Z

value	0.01793
scoring_system	epss
scoring_elements	0.8272
published_at	2026-04-04T12:55:00Z

value	0.01793
scoring_system	epss
scoring_elements	0.82717
published_at	2026-04-07T12:55:00Z

value	0.01793
scoring_system	epss
scoring_elements	0.82742
published_at	2026-04-08T12:55:00Z

value	0.01793
scoring_system	epss
scoring_elements	0.82749
published_at	2026-04-09T12:55:00Z

value	0.01793
scoring_system	epss
scoring_elements	0.82765
published_at	2026-04-11T12:55:00Z

value	0.01793
scoring_system	epss
scoring_elements	0.8276
published_at	2026-04-12T12:55:00Z

value	0.01793
scoring_system	epss
scoring_elements	0.82755
published_at	2026-04-13T12:55:00Z

value	0.01793
scoring_system	epss
scoring_elements	0.82794
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-5371

reference_url	http://secunia.com/advisories/51253
reference_id
reference_type
scores
url	http://secunia.com/advisories/51253

reference_url	http://securitytracker.com/id?1027747
reference_id
reference_type
scores
url	http://securitytracker.com/id?1027747

reference_url	https://exchange.xforce.ibmcloud.com/vulnerabilities/79993
reference_id
reference_type
scores
url	https://exchange.xforce.ibmcloud.com/vulnerabilities/79993

reference_url	https://www.131002.net/data/talks/appsec12_slides.pdf
reference_id
reference_type
scores
url	https://www.131002.net/data/talks/appsec12_slides.pdf

reference_url	https://www.ruby-lang.org/en/news/2012/11/09/ruby19-hashdos-cve-2012-5371
reference_id
reference_type
scores
url	https://www.ruby-lang.org/en/news/2012/11/09/ruby19-hashdos-cve-2012-5371

reference_url	http://www.ocert.org/advisories/ocert-2012-001.html
reference_id
reference_type
scores
url	http://www.ocert.org/advisories/ocert-2012-001.html

reference_url	http://www.osvdb.org/87280
reference_id
reference_type
scores
url	http://www.osvdb.org/87280

reference_url	http://www.ruby-lang.org/en/news/2012/11/09/ruby19-hashdos-cve-2012-5371/
reference_id
reference_type
scores
url	http://www.ruby-lang.org/en/news/2012/11/09/ruby19-hashdos-cve-2012-5371/

reference_url	http://www.securityfocus.com/bid/56484
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/56484

reference_url	http://www.ubuntu.com/usn/USN-1733-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-1733-1

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=875236
reference_id	875236
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=875236

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.2:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p0::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p0::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p0::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p125::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p125::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p125::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p194::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p194::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p194::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby::p286::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby::p286::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby::p286::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2012-5371

reference_id

CVE-2012-5371

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:N/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2012-5371

reference_url	https://security.gentoo.org/glsa/201412-27
reference_id	GLSA-201412-27
reference_type
scores
url	https://security.gentoo.org/glsa/201412-27

reference_url	https://access.redhat.com/errata/RHSA-2026:7305
reference_id	RHSA-2026:7305
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7305

reference_url	https://access.redhat.com/errata/RHSA-2026:7307
reference_id	RHSA-2026:7307
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7307

reference_url	https://access.redhat.com/errata/RHSA-2026:8838
reference_id	RHSA-2026:8838
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8838

reference_url	https://usn.ubuntu.com/1733-1/
reference_id	USN-1733-1
reference_type
scores
url	https://usn.ubuntu.com/1733-1/

fixed_packages

url	pkg:ebuild/dev-lang/ruby@2.0.0_p598
purl	pkg:ebuild/dev-lang/ruby@2.0.0_p598
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/ruby@2.0.0_p598

aliases CVE-2012-5371, GHSA-phrv-cj28-9h57, OSV-87863

risk_score 2.2

exploitability 0.5

weighted_severity 4.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jj3a-fpsa-a7at

url VCID-nxub-6qsu-hbhk

vulnerability_id VCID-nxub-6qsu-hbhk

summary

Multiple vulnerabilities have been found in Ruby, allowing
    context-dependent attackers to cause a Denial of Service condition.

references

reference_url	http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0188.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-0188.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-0188

reference_id

reference_type

scores

value	0.01937
scoring_system	epss
scoring_elements	0.83446
published_at	2026-04-21T12:55:00Z

value	0.01937
scoring_system	epss
scoring_elements	0.83445
published_at	2026-04-16T12:55:00Z

value	0.02608
scoring_system	epss
scoring_elements	0.85591
published_at	2026-04-04T12:55:00Z

value	0.02608
scoring_system	epss
scoring_elements	0.85596
published_at	2026-04-07T12:55:00Z

value	0.02608
scoring_system	epss
scoring_elements	0.85616
published_at	2026-04-08T12:55:00Z

value	0.02608
scoring_system	epss
scoring_elements	0.85561
published_at	2026-04-01T12:55:00Z

value	0.02608
scoring_system	epss
scoring_elements	0.8564
published_at	2026-04-11T12:55:00Z

value	0.02608
scoring_system	epss
scoring_elements	0.85637
published_at	2026-04-12T12:55:00Z

value	0.02608
scoring_system	epss
scoring_elements	0.85633
published_at	2026-04-13T12:55:00Z

value	0.02608
scoring_system	epss
scoring_elements	0.85627
published_at	2026-04-09T12:55:00Z

value	0.02608
scoring_system	epss
scoring_elements	0.85573
published_at	2026-04-02T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-0188

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2011-0188

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2011-0188

reference_url	http://support.apple.com/kb/HT4581
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT4581

reference_url	http://svn.ruby-lang.org/cgi-bin/viewvc.cgi/trunk/ext/bigdecimal/bigdecimal.c?r1=29364&r2=30993
reference_id
reference_type
scores
url	http://svn.ruby-lang.org/cgi-bin/viewvc.cgi/trunk/ext/bigdecimal/bigdecimal.c?r1=29364&r2=30993

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2011:097
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2011:097

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2011:098
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2011:098

reference_url	http://www.redhat.com/support/errata/RHSA-2011-0908.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2011-0908.html

reference_url	http://www.redhat.com/support/errata/RHSA-2011-0909.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2011-0909.html

reference_url	http://www.redhat.com/support/errata/RHSA-2011-0910.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2011-0910.html

reference_url	http://www.securitytracker.com/id?1025236
reference_id
reference_type
scores
url	http://www.securitytracker.com/id?1025236

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=682332
reference_id	682332
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=682332

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby::::::::
reference_id	cpe:2.3:a:ruby-lang:ruby::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.0:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.0-0:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.0-0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.0-0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.0-1:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.0-1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.0-1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.0-2:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.0-2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.0-2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.0-20060415:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.0-20060415:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.0-20060415:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.0-20070709:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.0-20070709:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.0-20070709:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.0:r18423::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.0:r18423::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.0:r18423::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-p0::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.1:-p0::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-p0::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-p129::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.1:-p129::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-p129::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-p243::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.1:-p243::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-p243::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-p376::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.1:-p376::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-p376::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-p429::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.1:-p429::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-p429::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-preview_1::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.1:-preview_1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-preview_1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-preview_2::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.1:-preview_2::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-preview_2::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-rc1::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.1:-rc1::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-rc1::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-rc2::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.1:-rc2::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:-rc2::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.2:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.2:dev::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.2:dev::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.2:dev::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9:r18423::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9:r18423::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9:r18423::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.5.8:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x:10.5.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.5.8:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.0:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x:10.6.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.1:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x:10.6.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.2:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x:10.6.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.3:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x:10.6.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.4:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x:10.6.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.5:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x:10.6.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.6:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x:10.6.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:10.6.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.5.8:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x_server:10.5.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.5.8:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.0:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x_server:10.6.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.1:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x_server:10.6.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.2:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x_server:10.6.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.3:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x_server:10.6.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.4:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x_server:10.6.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.5:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x_server:10.6.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.6:::::::*
reference_id	cpe:2.3:o:apple:mac_os_x_server:10.6.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x_server:10.6.6:::::::*

reference_url	https://security.gentoo.org/glsa/201412-27
reference_id	GLSA-201412-27
reference_type
scores
url	https://security.gentoo.org/glsa/201412-27

reference_url	https://access.redhat.com/errata/RHSA-2011:0908
reference_id	RHSA-2011:0908
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0908

reference_url	https://access.redhat.com/errata/RHSA-2011:0909
reference_id	RHSA-2011:0909
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0909

reference_url	https://access.redhat.com/errata/RHSA-2011:0910
reference_id	RHSA-2011:0910
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0910

reference_url	https://usn.ubuntu.com/1377-1/
reference_id	USN-1377-1
reference_type
scores
url	https://usn.ubuntu.com/1377-1/

fixed_packages

url	pkg:ebuild/dev-lang/ruby@2.0.0_p598
purl	pkg:ebuild/dev-lang/ruby@2.0.0_p598
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/ruby@2.0.0_p598

aliases CVE-2011-0188, GHSA-6vch-6cgr-x9c3

risk_score 3.0

exploitability 0.5

weighted_severity 6.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nxub-6qsu-hbhk

url VCID-rh8q-s45v-xbhg

vulnerability_id VCID-rh8q-s45v-xbhg

summary

Multiple vulnerabilities have been found in Ruby, allowing
    context-dependent attackers to cause a Denial of Service condition.

references

reference_url	http://lists.apple.com/archives/security-announce/2012/May/msg00001.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2012/May/msg00001.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054422.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054422.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054436.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054436.html

reference_url	http://osvdb.org/70958
reference_id
reference_type
scores
url	http://osvdb.org/70958

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1004.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1004.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-1004

reference_id

reference_type

scores

value	0.00044
scoring_system	epss
scoring_elements	0.13456
published_at	2026-04-21T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13495
published_at	2026-04-01T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13595
published_at	2026-04-02T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13656
published_at	2026-04-04T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13455
published_at	2026-04-07T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13536
published_at	2026-04-08T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13586
published_at	2026-04-09T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13558
published_at	2026-04-11T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.1352
published_at	2026-04-12T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13474
published_at	2026-04-13T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13385
published_at	2026-04-16T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13383
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-1004

reference_url	http://secunia.com/advisories/43434
reference_id
reference_type
scores
url	http://secunia.com/advisories/43434

reference_url	http://secunia.com/advisories/43573
reference_id
reference_type
scores
url	http://secunia.com/advisories/43573

reference_url	http://support.apple.com/kb/HT5281
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT5281

reference_url	https://www.ruby-lang.org/en/news/2011/02/18/fileutils-is-vulnerable-to-symlink-race-attacks
reference_id
reference_type
scores
url	https://www.ruby-lang.org/en/news/2011/02/18/fileutils-is-vulnerable-to-symlink-race-attacks

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2011:097
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2011:097

reference_url	http://www.openwall.com/lists/oss-security/2011/02/21/2
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2011/02/21/2

reference_url	http://www.openwall.com/lists/oss-security/2011/02/21/5
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2011/02/21/5

reference_url	http://www.redhat.com/support/errata/RHSA-2011-0909.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2011-0909.html

reference_url	http://www.redhat.com/support/errata/RHSA-2011-0910.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2011-0910.html

reference_url	http://www.ruby-lang.org/en/news/2011/02/18/fileutils-is-vulnerable-to-symlink-race-attacks/
reference_id
reference_type
scores
url	http://www.ruby-lang.org/en/news/2011/02/18/fileutils-is-vulnerable-to-symlink-race-attacks/

reference_url	http://www.securityfocus.com/bid/46460
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/46460

reference_url	http://www.vupen.com/english/advisories/2011/0539
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0539

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=678913
reference_id	678913
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=678913

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.6:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.8.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.7:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.8.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.8:dev::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.8.8:dev::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.8:dev::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.2:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:dev::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:dev::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:dev::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2011-1004

reference_id

CVE-2011-1004

reference_type

scores

value	6.3
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:N/I:C/A:C

url

https://nvd.nist.gov/vuln/detail/CVE-2011-1004

reference_url	https://security.gentoo.org/glsa/201412-27
reference_id	GLSA-201412-27
reference_type
scores
url	https://security.gentoo.org/glsa/201412-27

reference_url	https://access.redhat.com/errata/RHSA-2011:0909
reference_id	RHSA-2011:0909
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0909

reference_url	https://access.redhat.com/errata/RHSA-2011:0910
reference_id	RHSA-2011:0910
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0910

reference_url	https://usn.ubuntu.com/1377-1/
reference_id	USN-1377-1
reference_type
scores
url	https://usn.ubuntu.com/1377-1/

fixed_packages

url	pkg:ebuild/dev-lang/ruby@2.0.0_p598
purl	pkg:ebuild/dev-lang/ruby@2.0.0_p598
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/ruby@2.0.0_p598

aliases CVE-2011-1004, GHSA-45wv-gc6w-fq7m, OSV-70958

risk_score 2.9

exploitability 0.5

weighted_severity 5.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rh8q-s45v-xbhg

url VCID-t1p6-1u4n-gybf

vulnerability_id VCID-t1p6-1u4n-gybf

summary

Multiple vulnerabilities have been found in Ruby, allowing
    context-dependent attackers to cause a Denial of Service condition.

references

reference_url	http://lists.apple.com/archives/security-announce/2012/May/msg00001.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2012/May/msg00001.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054422.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054422.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054436.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054436.html

reference_url	http://osvdb.org/70957
reference_id
reference_type
scores
url	http://osvdb.org/70957

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1005.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1005.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-1005

reference_id

reference_type

scores

value	0.02121
scoring_system	epss
scoring_elements	0.84171
published_at	2026-04-21T12:55:00Z

value	0.02121
scoring_system	epss
scoring_elements	0.84074
published_at	2026-04-01T12:55:00Z

value	0.02121
scoring_system	epss
scoring_elements	0.84087
published_at	2026-04-02T12:55:00Z

value	0.02121
scoring_system	epss
scoring_elements	0.84105
published_at	2026-04-04T12:55:00Z

value	0.02121
scoring_system	epss
scoring_elements	0.84107
published_at	2026-04-07T12:55:00Z

value	0.02121
scoring_system	epss
scoring_elements	0.8413
published_at	2026-04-08T12:55:00Z

value	0.02121
scoring_system	epss
scoring_elements	0.84136
published_at	2026-04-09T12:55:00Z

value	0.02121
scoring_system	epss
scoring_elements	0.84153
published_at	2026-04-11T12:55:00Z

value	0.02121
scoring_system	epss
scoring_elements	0.84147
published_at	2026-04-12T12:55:00Z

value	0.02121
scoring_system	epss
scoring_elements	0.84143
published_at	2026-04-13T12:55:00Z

value	0.02121
scoring_system	epss
scoring_elements	0.84166
published_at	2026-04-16T12:55:00Z

value	0.02121
scoring_system	epss
scoring_elements	0.84167
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-1005

reference_url	http://secunia.com/advisories/43420
reference_id
reference_type
scores
url	http://secunia.com/advisories/43420

reference_url	http://secunia.com/advisories/43573
reference_id
reference_type
scores
url	http://secunia.com/advisories/43573

reference_url	http://support.apple.com/kb/HT5281
reference_id
reference_type
scores
url	http://support.apple.com/kb/HT5281

reference_url	https://www.ruby-lang.org/en/news/2011/02/18/exception-methods-can-bypass-safe
reference_id
reference_type
scores
url	https://www.ruby-lang.org/en/news/2011/02/18/exception-methods-can-bypass-safe

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2011:097
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2011:097

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2011:098
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2011:098

reference_url	http://www.openwall.com/lists/oss-security/2011/02/21/2
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2011/02/21/2

reference_url	http://www.openwall.com/lists/oss-security/2011/02/21/5
reference_id
reference_type
scores
url	http://www.openwall.com/lists/oss-security/2011/02/21/5

reference_url	http://www.redhat.com/support/errata/RHSA-2011-0908.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2011-0908.html

reference_url	http://www.redhat.com/support/errata/RHSA-2011-0909.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2011-0909.html

reference_url	http://www.redhat.com/support/errata/RHSA-2011-0910.html
reference_id
reference_type
scores
url	http://www.redhat.com/support/errata/RHSA-2011-0910.html

reference_url	http://www.ruby-lang.org/en/news/2011/02/18/exception-methods-can-bypass-safe/
reference_id
reference_type
scores
url	http://www.ruby-lang.org/en/news/2011/02/18/exception-methods-can-bypass-safe/

reference_url	http://www.securityfocus.com/bid/46458
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/46458

reference_url	http://www.vupen.com/english/advisories/2011/0539
reference_id
reference_type
scores
url	http://www.vupen.com/english/advisories/2011/0539

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=678920
reference_id	678920
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=678920

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.6:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.8.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.6-420:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.8.6-420:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.6-420:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.7:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.8.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.7-330:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.8.7-330:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.7-330:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.8:dev::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.8.8:dev::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.8:dev::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2011-1005

reference_id

CVE-2011-1005

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:P/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2011-1005

reference_url	https://security.gentoo.org/glsa/201412-27
reference_id	GLSA-201412-27
reference_type
scores
url	https://security.gentoo.org/glsa/201412-27

reference_url	https://access.redhat.com/errata/RHSA-2011:0908
reference_id	RHSA-2011:0908
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0908

reference_url	https://access.redhat.com/errata/RHSA-2011:0909
reference_id	RHSA-2011:0909
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0909

reference_url	https://access.redhat.com/errata/RHSA-2011:0910
reference_id	RHSA-2011:0910
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:0910

reference_url	https://usn.ubuntu.com/1377-1/
reference_id	USN-1377-1
reference_type
scores
url	https://usn.ubuntu.com/1377-1/

reference_url	https://usn.ubuntu.com/1583-1/
reference_id	USN-1583-1
reference_type
scores
url	https://usn.ubuntu.com/1583-1/

fixed_packages

url	pkg:ebuild/dev-lang/ruby@2.0.0_p598
purl	pkg:ebuild/dev-lang/ruby@2.0.0_p598
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/ruby@2.0.0_p598

aliases CVE-2011-1005, GHSA-h2rc-3ppq-6pjg, OSV-70957

risk_score 2.2

exploitability 0.5

weighted_severity 4.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t1p6-1u4n-gybf

url VCID-wzdf-d9fv-u3hh

vulnerability_id VCID-wzdf-d9fv-u3hh

summary security update

references

reference_url	http://advisories.mageia.org/MGASA-2014-0443.html
reference_id
reference_type
scores
url	http://advisories.mageia.org/MGASA-2014-0443.html

reference_url	http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
reference_id
reference_type
scores
url	http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html

reference_url	http://lists.opensuse.org/opensuse-updates/2014-12/msg00035.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-updates/2014-12/msg00035.html

reference_url	http://lists.opensuse.org/opensuse-updates/2015-01/msg00000.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-updates/2015-01/msg00000.html

reference_url	http://lists.opensuse.org/opensuse-updates/2015-01/msg00004.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-updates/2015-01/msg00004.html

reference_url	http://rhn.redhat.com/errata/RHSA-2014-1911.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2014-1911.html

reference_url	http://rhn.redhat.com/errata/RHSA-2014-1912.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2014-1912.html

reference_url	http://rhn.redhat.com/errata/RHSA-2014-1913.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2014-1913.html

reference_url	http://rhn.redhat.com/errata/RHSA-2014-1914.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2014-1914.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8080.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-8080.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2014-8080

reference_id

reference_type

scores

value	0.10784
scoring_system	epss
scoring_elements	0.93378
published_at	2026-04-21T12:55:00Z

value	0.10784
scoring_system	epss
scoring_elements	0.93317
published_at	2026-04-01T12:55:00Z

value	0.10784
scoring_system	epss
scoring_elements	0.93326
published_at	2026-04-02T12:55:00Z

value	0.10784
scoring_system	epss
scoring_elements	0.93332
published_at	2026-04-04T12:55:00Z

value	0.10784
scoring_system	epss
scoring_elements	0.93331
published_at	2026-04-07T12:55:00Z

value	0.10784
scoring_system	epss
scoring_elements	0.93339
published_at	2026-04-08T12:55:00Z

value	0.10784
scoring_system	epss
scoring_elements	0.93344
published_at	2026-04-09T12:55:00Z

value	0.10784
scoring_system	epss
scoring_elements	0.93349
published_at	2026-04-11T12:55:00Z

value	0.10784
scoring_system	epss
scoring_elements	0.93347
published_at	2026-04-12T12:55:00Z

value	0.10784
scoring_system	epss
scoring_elements	0.93348
published_at	2026-04-13T12:55:00Z

value	0.10784
scoring_system	epss
scoring_elements	0.93366
published_at	2026-04-16T12:55:00Z

value	0.10784
scoring_system	epss
scoring_elements	0.93371
published_at	2026-04-18T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2014-8080

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4975
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4975

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8080
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8080

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8090
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-8090

reference_url	http://secunia.com/advisories/61607
reference_id
reference_type
scores
url	http://secunia.com/advisories/61607

reference_url	http://secunia.com/advisories/62050
reference_id
reference_type
scores
url	http://secunia.com/advisories/62050

reference_url	http://secunia.com/advisories/62748
reference_id
reference_type
scores
url	http://secunia.com/advisories/62748

reference_url	https://support.apple.com/HT205267
reference_id
reference_type
scores
url	https://support.apple.com/HT205267

reference_url	https://www.ruby-lang.org/en/news/2014/10/27/rexml-dos-cve-2014-8080
reference_id
reference_type
scores
url	https://www.ruby-lang.org/en/news/2014/10/27/rexml-dos-cve-2014-8080

reference_url	https://www.ruby-lang.org/en/news/2014/10/27/rexml-dos-cve-2014-8080/
reference_id
reference_type
scores
url	https://www.ruby-lang.org/en/news/2014/10/27/rexml-dos-cve-2014-8080/

reference_url	http://www.debian.org/security/2015/dsa-3157
reference_id
reference_type
scores
url	http://www.debian.org/security/2015/dsa-3157

reference_url	http://www.debian.org/security/2015/dsa-3159
reference_id
reference_type
scores
url	http://www.debian.org/security/2015/dsa-3159

reference_url	http://www.mandriva.com/security/advisories?name=MDVSA-2015:129
reference_id
reference_type
scores
url	http://www.mandriva.com/security/advisories?name=MDVSA-2015:129

reference_url	http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

reference_url	http://www.securityfocus.com/bid/70935
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/70935

reference_url	http://www.ubuntu.com/usn/USN-2397-1
reference_id
reference_type
scores
url	http://www.ubuntu.com/usn/USN-2397-1

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1157709
reference_id	1157709
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1157709

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p0::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p0::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p0::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p125::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p125::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p125::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p194::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p194::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p194::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p286::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p286::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p286::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p383::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p383::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p383::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p385::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p385::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p385::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p392::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p392::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p392::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p426::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p426::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p426::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p429::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p429::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p429::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p448::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p448::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p448::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p545::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p545::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p545::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p547::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:1.9.3:p547::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:p547::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p0::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:p0::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p0::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p195::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:p195::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p195::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p247::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:p247::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p247::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p451::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:p451::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p451::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p481::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:p481::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p481::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p576::::::
reference_id	cpe:2.3:a:ruby-lang:ruby:2.0.0:p576::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.0.0:p576::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.1:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.2:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.3:::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby:2.1.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:2.1.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby::p550::::::*
reference_id	cpe:2.3:a:ruby-lang:ruby::p550::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby::p550::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:-:lts:::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:12.04:-:lts:::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:-:lts:::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:12.3:::::::*
reference_id	cpe:2.3:o:opensuse:opensuse:12.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:12.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.1:::::::*
reference_id	cpe:2.3:o:opensuse:opensuse:13.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:opensuse:13.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:6.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2014-8080

reference_id

CVE-2014-8080

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:N/A:P

url

https://nvd.nist.gov/vuln/detail/CVE-2014-8080

reference_url	https://security.gentoo.org/glsa/201412-27
reference_id	GLSA-201412-27
reference_type
scores
url	https://security.gentoo.org/glsa/201412-27

reference_url	https://access.redhat.com/errata/RHSA-2014:1911
reference_id	RHSA-2014:1911
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1911

reference_url	https://access.redhat.com/errata/RHSA-2014:1912
reference_id	RHSA-2014:1912
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1912

reference_url	https://access.redhat.com/errata/RHSA-2014:1913
reference_id	RHSA-2014:1913
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1913

reference_url	https://access.redhat.com/errata/RHSA-2014:1914
reference_id	RHSA-2014:1914
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2014:1914

reference_url	https://access.redhat.com/errata/RHSA-2026:7305
reference_id	RHSA-2026:7305
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7305

reference_url	https://access.redhat.com/errata/RHSA-2026:7307
reference_id	RHSA-2026:7307
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:7307

reference_url	https://access.redhat.com/errata/RHSA-2026:8838
reference_id	RHSA-2026:8838
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:8838

reference_url	https://usn.ubuntu.com/2397-1/
reference_id	USN-2397-1
reference_type
scores
url	https://usn.ubuntu.com/2397-1/

fixed_packages

url	pkg:ebuild/dev-lang/ruby@2.0.0_p598
purl	pkg:ebuild/dev-lang/ruby@2.0.0_p598
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/ruby@2.0.0_p598

aliases CVE-2014-8080, GHSA-ggvr-v7qh-jwjh, OSV-113747

risk_score 2.2

exploitability 0.5

weighted_severity 4.5

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wzdf-d9fv-u3hh

Risk_score null

Resource_url http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/ruby@2.0.0_p598

Package Instance