Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/13099?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13099?format=api", "vulnerability_id": "VCID-uvjy-9nu8-bkaj", "summary": "Improper Certificate Validation\nWhen two `OpenSSL::X509::Name` objects are compared using `==`, depending on the ordering, non-equal objects may return true. When the first argument is one character longer than the second, or the second argument contains a character that is one less than a character in the same position of the first argument, the result of `==` will be true. This could be leveraged to create an illegitimate certificate that may be accepted as legitimate and then used in signing or encryption operations.", "aliases": [ { "alias": "CVE-2018-16395" }, { "alias": "GHSA-mmrq-6999-72v8" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/283211?format=api", "purl": "pkg:apk/alpine/ruby@2.4.5-r0?arch=aarch64&distroversion=v3.7&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.5-r0%3Farch=aarch64&distroversion=v3.7&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/283212?format=api", "purl": "pkg:apk/alpine/ruby@2.4.5-r0?arch=armhf&distroversion=v3.7&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.5-r0%3Farch=armhf&distroversion=v3.7&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/283213?format=api", "purl": "pkg:apk/alpine/ruby@2.4.5-r0?arch=ppc64le&distroversion=v3.7&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.5-r0%3Farch=ppc64le&distroversion=v3.7&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/283214?format=api", "purl": "pkg:apk/alpine/ruby@2.4.5-r0?arch=s390x&distroversion=v3.7&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.5-r0%3Farch=s390x&distroversion=v3.7&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/283216?format=api", "purl": "pkg:apk/alpine/ruby@2.4.5-r0?arch=x86_64&distroversion=v3.7&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.5-r0%3Farch=x86_64&distroversion=v3.7&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/283215?format=api", "purl": "pkg:apk/alpine/ruby@2.4.5-r0?arch=x86&distroversion=v3.7&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.5-r0%3Farch=x86&distroversion=v3.7&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/361994?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=aarch64&distroversion=v3.12&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=aarch64&distroversion=v3.12&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/357874?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=aarch64&distroversion=v3.13&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=aarch64&distroversion=v3.13&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/374199?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=aarch64&distroversion=v3.14&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=aarch64&distroversion=v3.14&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/407773?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=aarch64&distroversion=v3.19&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=aarch64&distroversion=v3.19&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/361995?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armhf&distroversion=v3.12&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armhf&distroversion=v3.12&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/357875?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armhf&distroversion=v3.13&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armhf&distroversion=v3.13&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/374200?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armhf&distroversion=v3.14&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armhf&distroversion=v3.14&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/407774?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armhf&distroversion=v3.19&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armhf&distroversion=v3.19&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/361996?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armv7&distroversion=v3.12&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armv7&distroversion=v3.12&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/357876?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armv7&distroversion=v3.13&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armv7&distroversion=v3.13&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/374201?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armv7&distroversion=v3.14&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armv7&distroversion=v3.14&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/407775?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armv7&distroversion=v3.19&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armv7&distroversion=v3.19&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/361997?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=mips64&distroversion=v3.12&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=mips64&distroversion=v3.12&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/357877?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=mips64&distroversion=v3.13&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=mips64&distroversion=v3.13&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/361998?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=ppc64le&distroversion=v3.12&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=ppc64le&distroversion=v3.12&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/357878?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=ppc64le&distroversion=v3.13&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=ppc64le&distroversion=v3.13&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/374202?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=ppc64le&distroversion=v3.14&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=ppc64le&distroversion=v3.14&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/407776?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=ppc64le&distroversion=v3.19&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=ppc64le&distroversion=v3.19&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/361999?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=s390x&distroversion=v3.12&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=s390x&distroversion=v3.12&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/357879?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=s390x&distroversion=v3.13&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=s390x&distroversion=v3.13&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/374203?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=s390x&distroversion=v3.14&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=s390x&distroversion=v3.14&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/407777?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=s390x&distroversion=v3.19&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=s390x&distroversion=v3.19&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/362001?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86_64&distroversion=v3.12&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86_64&distroversion=v3.12&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/357881?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86_64&distroversion=v3.13&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86_64&distroversion=v3.13&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/374205?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86_64&distroversion=v3.14&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86_64&distroversion=v3.14&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/407779?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86_64&distroversion=v3.19&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86_64&distroversion=v3.19&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/362000?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86&distroversion=v3.12&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86&distroversion=v3.12&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/357880?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86&distroversion=v3.13&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86&distroversion=v3.13&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/374204?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86&distroversion=v3.14&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86&distroversion=v3.14&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/407778?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86&distroversion=v3.19&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86&distroversion=v3.19&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/292553?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=aarch64&distroversion=v3.11&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=aarch64&distroversion=v3.11&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/234335?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=aarch64&distroversion=v3.16&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=aarch64&distroversion=v3.16&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/285943?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=aarch64&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=aarch64&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/243123?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=aarch64&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=aarch64&distroversion=v3.18&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/268255?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=aarch64&distroversion=v3.8&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=aarch64&distroversion=v3.8&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/292554?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armhf&distroversion=v3.11&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armhf&distroversion=v3.11&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/234336?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armhf&distroversion=v3.16&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armhf&distroversion=v3.16&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/285944?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armhf&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armhf&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/243124?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armhf&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armhf&distroversion=v3.18&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/268256?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armhf&distroversion=v3.8&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armhf&distroversion=v3.8&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/292555?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armv7&distroversion=v3.11&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armv7&distroversion=v3.11&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/234337?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armv7&distroversion=v3.16&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armv7&distroversion=v3.16&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/285945?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armv7&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armv7&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/243125?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=armv7&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=armv7&distroversion=v3.18&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/292556?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=ppc64le&distroversion=v3.11&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=ppc64le&distroversion=v3.11&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/234338?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=ppc64le&distroversion=v3.16&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=ppc64le&distroversion=v3.16&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/285946?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=ppc64le&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=ppc64le&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/243126?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=ppc64le&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=ppc64le&distroversion=v3.18&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/268257?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=ppc64le&distroversion=v3.8&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=ppc64le&distroversion=v3.8&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/292557?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=s390x&distroversion=v3.11&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=s390x&distroversion=v3.11&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/234339?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=s390x&distroversion=v3.16&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=s390x&distroversion=v3.16&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/285947?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=s390x&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=s390x&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/243127?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=s390x&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=s390x&distroversion=v3.18&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/268258?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=s390x&distroversion=v3.8&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=s390x&distroversion=v3.8&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/292559?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86_64&distroversion=v3.11&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86_64&distroversion=v3.11&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/234341?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86_64&distroversion=v3.16&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86_64&distroversion=v3.16&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/285949?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86_64&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86_64&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/243129?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86_64&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86_64&distroversion=v3.18&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/268260?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86_64&distroversion=v3.8&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86_64&distroversion=v3.8&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/292558?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86&distroversion=v3.11&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86&distroversion=v3.11&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/234340?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86&distroversion=v3.16&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86&distroversion=v3.16&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/285948?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86&distroversion=v3.17&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86&distroversion=v3.17&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/243128?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86&distroversion=v3.18&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86&distroversion=v3.18&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/268259?format=api", "purl": "pkg:apk/alpine/ruby@2.5.2-r0?arch=x86&distroversion=v3.8&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.2-r0%3Farch=x86&distroversion=v3.8&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/127505?format=api", "purl": "pkg:gem/openssl@2.0.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.0.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/56033?format=api", "purl": "pkg:gem/openssl@2.1.2", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.1.2" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/100813?format=api", "purl": "pkg:gem/openssl@2.0.0.beta.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-26ce-vecr-5fcr" }, { "vulnerability": "VCID-574t-e8hs-hbe1" }, { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.0.0.beta.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/100814?format=api", "purl": "pkg:gem/openssl@2.0.0.beta.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-26ce-vecr-5fcr" }, { "vulnerability": "VCID-574t-e8hs-hbe1" }, { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.0.0.beta.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/52218?format=api", "purl": "pkg:gem/openssl@2.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-26ce-vecr-5fcr" }, { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/127496?format=api", "purl": "pkg:gem/openssl@2.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/127497?format=api", "purl": "pkg:gem/openssl@2.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/127498?format=api", "purl": "pkg:gem/openssl@2.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/127499?format=api", "purl": "pkg:gem/openssl@2.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/127501?format=api", "purl": "pkg:gem/openssl@2.0.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.0.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/127502?format=api", "purl": "pkg:gem/openssl@2.0.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.0.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/127503?format=api", "purl": "pkg:gem/openssl@2.0.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.0.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/127504?format=api", "purl": "pkg:gem/openssl@2.0.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.0.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/127505?format=api", "purl": "pkg:gem/openssl@2.0.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.0.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/127506?format=api", "purl": "pkg:gem/openssl@2.1.0.beta1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.1.0.beta1" }, { "url": "http://public2.vulnerablecode.io/api/packages/127507?format=api", "purl": "pkg:gem/openssl@2.1.0.beta2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.1.0.beta2" }, { "url": "http://public2.vulnerablecode.io/api/packages/127508?format=api", "purl": "pkg:gem/openssl@2.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/127509?format=api", "purl": "pkg:gem/openssl@2.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-uvjy-9nu8-bkaj" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/openssl@2.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/156320?format=api", "purl": "pkg:ruby/ruby@2.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-26ce-vecr-5fcr" }, { "vulnerability": "VCID-2g1e-v1kc-s3ap" }, { "vulnerability": "VCID-3v37-hkeq-rka9" }, { "vulnerability": "VCID-7x6a-k2a6-r7f5" }, { "vulnerability": "VCID-8n19-6vvk-hybj" }, { "vulnerability": "VCID-9vyg-cdy7-73hg" }, { "vulnerability": "VCID-eqfv-fvjg-53b4" }, { "vulnerability": "VCID-h6gs-g175-v3hp" }, { "vulnerability": "VCID-jseu-jmbm-7fb2" }, { "vulnerability": "VCID-rzr5-z3an-43aq" }, { "vulnerability": "VCID-uvjy-9nu8-bkaj" }, { "vulnerability": "VCID-wkb7-gnpq-qydm" }, { "vulnerability": "VCID-wzyz-axaw-27h5" }, { "vulnerability": "VCID-xb11-braz-93h5" }, { "vulnerability": "VCID-y52x-9fkz-8fbz" }, { "vulnerability": "VCID-yn2e-3r56-m3gf" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ruby/ruby@2.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/156309?format=api", "purl": "pkg:ruby/ruby@2.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-46wy-6742-77hg" }, { "vulnerability": "VCID-7x6a-k2a6-r7f5" }, { "vulnerability": "VCID-8n19-6vvk-hybj" }, { "vulnerability": "VCID-993w-cbbc-7fep" }, { "vulnerability": "VCID-9vyg-cdy7-73hg" }, { "vulnerability": "VCID-deq8-2b8k-sqe2" }, { "vulnerability": "VCID-fqws-4khh-b3dv" }, { "vulnerability": "VCID-jseu-jmbm-7fb2" }, { "vulnerability": "VCID-sk49-92d2-eqgb" }, { "vulnerability": "VCID-uvjy-9nu8-bkaj" }, { "vulnerability": "VCID-wkb7-gnpq-qydm" }, { "vulnerability": "VCID-wzyz-axaw-27h5" }, { "vulnerability": "VCID-xb11-braz-93h5" }, { "vulnerability": "VCID-y52x-9fkz-8fbz" }, { "vulnerability": "VCID-yjpp-umke-9yc2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ruby/ruby@2.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/156310?format=api", "purl": "pkg:ruby/ruby@2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-46wy-6742-77hg" }, { "vulnerability": "VCID-7x6a-k2a6-r7f5" }, { "vulnerability": "VCID-993w-cbbc-7fep" }, { "vulnerability": "VCID-9vyg-cdy7-73hg" }, { "vulnerability": "VCID-deq8-2b8k-sqe2" }, { "vulnerability": "VCID-fqws-4khh-b3dv" }, { "vulnerability": "VCID-jseu-jmbm-7fb2" }, { "vulnerability": "VCID-sk49-92d2-eqgb" }, { "vulnerability": "VCID-uvjy-9nu8-bkaj" }, { "vulnerability": "VCID-wkb7-gnpq-qydm" }, { "vulnerability": "VCID-wzyz-axaw-27h5" }, { "vulnerability": "VCID-xb11-braz-93h5" }, { "vulnerability": "VCID-y52x-9fkz-8fbz" }, { "vulnerability": "VCID-yjpp-umke-9yc2" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ruby/ruby@2.6" } ], "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3729", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://access.redhat.com/errata/RHSA-2018:3729" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3730", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://access.redhat.com/errata/RHSA-2018:3730" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3731", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://access.redhat.com/errata/RHSA-2018:3731" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2018:3738", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://access.redhat.com/errata/RHSA-2018:3738" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1948", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://access.redhat.com/errata/RHSA-2019:1948" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:2565", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://access.redhat.com/errata/RHSA-2019:2565" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16395", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.04424", "scoring_system": "epss", "scoring_elements": "0.89205", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2018-16395" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "6.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://github.com/ruby/openssl/commit/f653cfa43f0f20e8c440122ea982382b6228e7f5", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/ruby/openssl/commit/f653cfa43f0f20e8c440122ea982382b6228e7f5" }, { "reference_url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/openssl/CVE-2018-16395.yml", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/openssl/CVE-2018-16395.yml" }, { "reference_url": "https://hackerone.com/reports/387250", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://hackerone.com/reports/387250" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00020.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00020.html" }, { "reference_url": "https://security.netapp.com/advisory/ntap-20190221-0002", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://security.netapp.com/advisory/ntap-20190221-0002" }, { "reference_url": "https://usn.ubuntu.com/3808-1", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://usn.ubuntu.com/3808-1" }, { "reference_url": "https://web.archive.org/web/20211206015239/https://securitytracker.com/id/1042105", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20211206015239/https://securitytracker.com/id/1042105" }, { "reference_url": "https://www.debian.org/security/2018/dsa-4332", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.debian.org/security/2018/dsa-4332" }, { "reference_url": "https://www.oracle.com/security-alerts/cpujan2020.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.oracle.com/security-alerts/cpujan2020.html" }, { "reference_url": "https://www.ruby-lang.org/en/news/2018/10/17/openssl-x509-name-equality-check-does-not-work-correctly-cve-2018-16395", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.ruby-lang.org/en/news/2018/10/17/openssl-x509-name-equality-check-does-not-work-correctly-cve-2018-16395" }, { "reference_url": "https://www.ruby-lang.org/en/news/2018/10/17/openssl-x509-name-equality-check-does-not-work-correctly-cve-2018-16395/", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3", "scoring_elements": "" } ], "url": "https://www.ruby-lang.org/en/news/2018/10/17/openssl-x509-name-equality-check-does-not-work-correctly-cve-2018-16395/" }, { "reference_url": "https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-3-8-released", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-3-8-released" }, { "reference_url": "https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-3-8-released/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-3-8-released/" }, { "reference_url": "https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-4-5-released", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-4-5-released" }, { "reference_url": "https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-4-5-released/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-4-5-released/" }, { "reference_url": "https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-5-2-released", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-5-2-released" }, { "reference_url": "https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-5-2-released/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.ruby-lang.org/en/news/2018/10/17/ruby-2-5-2-released/" }, { "reference_url": "https://www.ruby-lang.org/en/news/2018/11/06/ruby-2-6-0-preview3-released", "reference_id": "", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://www.ruby-lang.org/en/news/2018/11/06/ruby-2-6-0-preview3-released" }, { "reference_url": "https://www.ruby-lang.org/en/news/2018/11/06/ruby-2-6-0-preview3-released/", "reference_id": "", "reference_type": "", "scores": [], "url": "https://www.ruby-lang.org/en/news/2018/11/06/ruby-2-6-0-preview3-released/" }, { "reference_url": "http://www.securitytracker.com/id/1042105", "reference_id": "", "reference_type": "", "scores": [], "url": "http://www.securitytracker.com/id/1042105" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16395", "reference_id": "CVE-2018-16395", "reference_type": "", "scores": [ { "value": "9.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "value": "CRITICAL", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-16395" }, { "reference_url": "https://usn.ubuntu.com/3808-1/", "reference_id": "USN-3808-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3808-1/" } ], "weaknesses": [ { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": "6.8 - 10.0", "exploitability": "0.5", "weighted_severity": "6.9", "risk_score": 3.5, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-uvjy-9nu8-bkaj" }