Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/13724?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/13724?format=api", "vulnerability_id": "VCID-zdf2-nmqk-kkgv", "summary": "Improper Restriction of Operations within the Bounds of a Memory Buffer\nAn issue was discovered in RubyGems. Since `Gem::CommandManager#run` calls alert_error without escaping, escape sequence injection is possible. (There are many ways to cause an error.)", "aliases": [ { "alias": "CVE-2019-8325" }, { "alias": "GHSA-4wm8-fjv7-j774" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/408880?format=api", "purl": "pkg:apk/alpine/ruby@2.4.6-r0?arch=aarch64&distroversion=v3.6&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.6-r0%3Farch=aarch64&distroversion=v3.6&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/408881?format=api", "purl": "pkg:apk/alpine/ruby@2.4.6-r0?arch=armhf&distroversion=v3.6&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.6-r0%3Farch=armhf&distroversion=v3.6&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/408882?format=api", "purl": "pkg:apk/alpine/ruby@2.4.6-r0?arch=ppc64le&distroversion=v3.6&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.6-r0%3Farch=ppc64le&distroversion=v3.6&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/408883?format=api", "purl": "pkg:apk/alpine/ruby@2.4.6-r0?arch=s390x&distroversion=v3.6&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.6-r0%3Farch=s390x&distroversion=v3.6&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/408885?format=api", "purl": "pkg:apk/alpine/ruby@2.4.6-r0?arch=x86_64&distroversion=v3.6&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.6-r0%3Farch=x86_64&distroversion=v3.6&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/408884?format=api", "purl": "pkg:apk/alpine/ruby@2.4.6-r0?arch=x86&distroversion=v3.6&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.6-r0%3Farch=x86&distroversion=v3.6&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/328173?format=api", "purl": "pkg:apk/alpine/ruby@2.4.6-r0?arch=aarch64&distroversion=v3.7&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.6-r0%3Farch=aarch64&distroversion=v3.7&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/328174?format=api", "purl": "pkg:apk/alpine/ruby@2.4.6-r0?arch=armhf&distroversion=v3.7&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.6-r0%3Farch=armhf&distroversion=v3.7&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/328175?format=api", "purl": "pkg:apk/alpine/ruby@2.4.6-r0?arch=ppc64le&distroversion=v3.7&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.6-r0%3Farch=ppc64le&distroversion=v3.7&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/328176?format=api", "purl": "pkg:apk/alpine/ruby@2.4.6-r0?arch=s390x&distroversion=v3.7&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.6-r0%3Farch=s390x&distroversion=v3.7&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/328178?format=api", "purl": "pkg:apk/alpine/ruby@2.4.6-r0?arch=x86_64&distroversion=v3.7&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.6-r0%3Farch=x86_64&distroversion=v3.7&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/328177?format=api", "purl": "pkg:apk/alpine/ruby@2.4.6-r0?arch=x86&distroversion=v3.7&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.4.6-r0%3Farch=x86&distroversion=v3.7&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/373604?format=api", "purl": "pkg:apk/alpine/ruby@2.5.5-r0?arch=aarch64&distroversion=v3.9&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.5-r0%3Farch=aarch64&distroversion=v3.9&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/373605?format=api", "purl": "pkg:apk/alpine/ruby@2.5.5-r0?arch=armhf&distroversion=v3.9&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.5-r0%3Farch=armhf&distroversion=v3.9&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/373606?format=api", "purl": "pkg:apk/alpine/ruby@2.5.5-r0?arch=armv7&distroversion=v3.9&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.5-r0%3Farch=armv7&distroversion=v3.9&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/373607?format=api", "purl": "pkg:apk/alpine/ruby@2.5.5-r0?arch=ppc64le&distroversion=v3.9&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.5-r0%3Farch=ppc64le&distroversion=v3.9&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/373608?format=api", "purl": "pkg:apk/alpine/ruby@2.5.5-r0?arch=s390x&distroversion=v3.9&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.5-r0%3Farch=s390x&distroversion=v3.9&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/373610?format=api", "purl": "pkg:apk/alpine/ruby@2.5.5-r0?arch=x86_64&distroversion=v3.9&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.5-r0%3Farch=x86_64&distroversion=v3.9&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/373609?format=api", "purl": "pkg:apk/alpine/ruby@2.5.5-r0?arch=x86&distroversion=v3.9&reponame=main", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/ruby@2.5.5-r0%3Farch=x86&distroversion=v3.9&reponame=main" }, { "url": "http://public2.vulnerablecode.io/api/packages/182622?format=api", "purl": "pkg:deb/debian/jruby@9.1.17.0-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jruby@9.1.17.0-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/182612?format=api", "purl": "pkg:deb/debian/jruby@9.3.9.0%2Bds-8?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-75dn-a5bv-rffk" }, { "vulnerability": "VCID-h4cz-8jav-yfg5" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jruby@9.3.9.0%252Bds-8%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/182614?format=api", "purl": "pkg:deb/debian/jruby@9.4.8.0%2Bds-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/jruby@9.4.8.0%252Bds-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/206452?format=api", "purl": "pkg:deb/debian/rubygems@3.2.0~rc.1-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/rubygems@3.2.0~rc.1-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/206450?format=api", "purl": "pkg:deb/debian/rubygems@3.2.5-2?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-5g17-tqj4-8yaq" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/rubygems@3.2.5-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/206448?format=api", "purl": "pkg:deb/debian/rubygems@3.3.15-2%2Bdeb12u1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/rubygems@3.3.15-2%252Bdeb12u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/206451?format=api", "purl": "pkg:deb/debian/rubygems@3.6.7-2?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/rubygems@3.6.7-2%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/74144?format=api", "purl": "pkg:gem/rubygems-update@2.7.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/57169?format=api", "purl": "pkg:gem/rubygems-update@3.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@3.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/57170?format=api", "purl": "pkg:gem/rubygems-update@3.0.3", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@3.0.3" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/156651?format=api", "purl": "pkg:gem/rubygems-update@2.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/57232?format=api", "purl": "pkg:gem/rubygems-update@2.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-7b5r-7k8f-xkbc" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-gmxv-upb4-akbz" }, { "vulnerability": "VCID-n1bn-58ed-tfhs" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-z8wp-7r23-w3am" }, { "vulnerability": "VCID-z9tc-h14t-mqc4" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/104930?format=api", "purl": "pkg:gem/rubygems-update@2.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-7b5r-7k8f-xkbc" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-gmxv-upb4-akbz" }, { "vulnerability": "VCID-n1bn-58ed-tfhs" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-z8wp-7r23-w3am" }, { "vulnerability": "VCID-z9tc-h14t-mqc4" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/104931?format=api", "purl": "pkg:gem/rubygems-update@2.6.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-7b5r-7k8f-xkbc" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-gmxv-upb4-akbz" }, { "vulnerability": "VCID-n1bn-58ed-tfhs" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-z8wp-7r23-w3am" }, { "vulnerability": "VCID-z9tc-h14t-mqc4" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/104932?format=api", "purl": "pkg:gem/rubygems-update@2.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-7b5r-7k8f-xkbc" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-gmxv-upb4-akbz" }, { "vulnerability": "VCID-n1bn-58ed-tfhs" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-z8wp-7r23-w3am" }, { "vulnerability": "VCID-z9tc-h14t-mqc4" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/104933?format=api", "purl": "pkg:gem/rubygems-update@2.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-7b5r-7k8f-xkbc" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-gmxv-upb4-akbz" }, { "vulnerability": "VCID-n1bn-58ed-tfhs" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-z8wp-7r23-w3am" }, { "vulnerability": "VCID-z9tc-h14t-mqc4" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/104934?format=api", "purl": "pkg:gem/rubygems-update@2.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-7b5r-7k8f-xkbc" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-gmxv-upb4-akbz" }, { "vulnerability": "VCID-n1bn-58ed-tfhs" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-z8wp-7r23-w3am" }, { "vulnerability": "VCID-z9tc-h14t-mqc4" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/104935?format=api", "purl": "pkg:gem/rubygems-update@2.6.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-7b5r-7k8f-xkbc" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-gmxv-upb4-akbz" }, { "vulnerability": "VCID-n1bn-58ed-tfhs" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-z8wp-7r23-w3am" }, { "vulnerability": "VCID-z9tc-h14t-mqc4" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/104936?format=api", "purl": "pkg:gem/rubygems-update@2.6.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-7b5r-7k8f-xkbc" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-gmxv-upb4-akbz" }, { "vulnerability": "VCID-n1bn-58ed-tfhs" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-z8wp-7r23-w3am" }, { "vulnerability": "VCID-z9tc-h14t-mqc4" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/104937?format=api", "purl": "pkg:gem/rubygems-update@2.6.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-7b5r-7k8f-xkbc" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-gmxv-upb4-akbz" }, { "vulnerability": "VCID-n1bn-58ed-tfhs" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-z8wp-7r23-w3am" }, { "vulnerability": "VCID-z9tc-h14t-mqc4" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/104938?format=api", "purl": "pkg:gem/rubygems-update@2.6.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-7b5r-7k8f-xkbc" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-gmxv-upb4-akbz" }, { "vulnerability": "VCID-n1bn-58ed-tfhs" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-z8wp-7r23-w3am" }, { "vulnerability": "VCID-z9tc-h14t-mqc4" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/104939?format=api", "purl": "pkg:gem/rubygems-update@2.6.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-7b5r-7k8f-xkbc" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-gmxv-upb4-akbz" }, { "vulnerability": "VCID-n1bn-58ed-tfhs" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-z8wp-7r23-w3am" }, { "vulnerability": "VCID-z9tc-h14t-mqc4" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/104940?format=api", "purl": "pkg:gem/rubygems-update@2.6.11", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-7b5r-7k8f-xkbc" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-gmxv-upb4-akbz" }, { "vulnerability": "VCID-n1bn-58ed-tfhs" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-z8wp-7r23-w3am" }, { "vulnerability": "VCID-z9tc-h14t-mqc4" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.11" }, { "url": "http://public2.vulnerablecode.io/api/packages/52993?format=api", "purl": "pkg:gem/rubygems-update@2.6.12", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-7b5r-7k8f-xkbc" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-gmxv-upb4-akbz" }, { "vulnerability": "VCID-n1bn-58ed-tfhs" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-z8wp-7r23-w3am" }, { "vulnerability": "VCID-z9tc-h14t-mqc4" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.12" }, { "url": "http://public2.vulnerablecode.io/api/packages/52994?format=api", "purl": "pkg:gem/rubygems-update@2.6.13", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-n1bn-58ed-tfhs" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.13" }, { "url": "http://public2.vulnerablecode.io/api/packages/53391?format=api", "purl": "pkg:gem/rubygems-update@2.6.14", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.6.14" }, { "url": "http://public2.vulnerablecode.io/api/packages/140916?format=api", "purl": "pkg:gem/rubygems-update@2.7.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/140917?format=api", "purl": "pkg:gem/rubygems-update@2.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/140918?format=api", "purl": "pkg:gem/rubygems-update@2.7.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/140919?format=api", "purl": "pkg:gem/rubygems-update@2.7.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/140920?format=api", "purl": "pkg:gem/rubygems-update@2.7.4.pre1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.4.pre1" }, { "url": "http://public2.vulnerablecode.io/api/packages/140921?format=api", "purl": "pkg:gem/rubygems-update@2.7.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/140922?format=api", "purl": "pkg:gem/rubygems-update@2.7.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/57168?format=api", "purl": "pkg:gem/rubygems-update@2.7.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/139459?format=api", "purl": "pkg:gem/rubygems-update@2.7.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/139460?format=api", "purl": "pkg:gem/rubygems-update@2.7.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/74144?format=api", "purl": "pkg:gem/rubygems-update@2.7.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/140923?format=api", "purl": "pkg:gem/rubygems-update@2.7.10", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.7.10" }, { "url": "http://public2.vulnerablecode.io/api/packages/156650?format=api", "purl": "pkg:gem/rubygems-update@2.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@2.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/74145?format=api", "purl": "pkg:gem/rubygems-update@3.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@3.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/139461?format=api", "purl": "pkg:gem/rubygems-update@3.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@3.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/57169?format=api", "purl": "pkg:gem/rubygems-update@3.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/rubygems-update@3.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/1032816?format=api", "purl": "pkg:rpm/redhat/cfme@5.10.5.1-1?arch=el7cf", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/cfme@5.10.5.1-1%3Farch=el7cf" }, { "url": "http://public2.vulnerablecode.io/api/packages/1032819?format=api", "purl": "pkg:rpm/redhat/cfme-amazon-smartstate@5.10.5.1-1?arch=el7cf", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/cfme-amazon-smartstate@5.10.5.1-1%3Farch=el7cf" }, { "url": "http://public2.vulnerablecode.io/api/packages/1032820?format=api", "purl": "pkg:rpm/redhat/cfme-appliance@5.10.5.1-1?arch=el7cf", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/cfme-appliance@5.10.5.1-1%3Farch=el7cf" }, { "url": "http://public2.vulnerablecode.io/api/packages/1032817?format=api", "purl": "pkg:rpm/redhat/cfme-gemset@5.10.5.1-1?arch=el7cf", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/cfme-gemset@5.10.5.1-1%3Farch=el7cf" }, { "url": "http://public2.vulnerablecode.io/api/packages/1032823?format=api", "purl": "pkg:rpm/redhat/rh-ruby24-ruby@2.4.6-92?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-ruby24-ruby@2.4.6-92%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1032821?format=api", "purl": "pkg:rpm/redhat/rh-ruby24-ruby@2.4.6-92?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-ruby24-ruby@2.4.6-92%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/1032822?format=api", "purl": "pkg:rpm/redhat/rh-ruby25-ruby@2.5.5-7?arch=el7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-ruby25-ruby@2.5.5-7%3Farch=el7" }, { "url": "http://public2.vulnerablecode.io/api/packages/1032825?format=api", "purl": "pkg:rpm/redhat/ruby@2.0.0.648-35?arch=el7_6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ruby@2.0.0.648-35%3Farch=el7_6" }, { "url": "http://public2.vulnerablecode.io/api/packages/1032824?format=api", "purl": "pkg:rpm/redhat/ruby@2.0.0.648-37?arch=el7_4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-7x6a-k2a6-r7f5" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ruby@2.0.0.648-37%3Farch=el7_4" }, { "url": "http://public2.vulnerablecode.io/api/packages/1032818?format=api", "purl": "pkg:rpm/redhat/ruby@2.4.6-91?arch=el7cf", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-3ubz-9kf5-8qah" }, { "vulnerability": "VCID-ednh-qhtf-qkdg" }, { "vulnerability": "VCID-qcav-n483-7ycf" }, { "vulnerability": "VCID-r55c-qks7-wuhj" }, { "vulnerability": "VCID-v9dk-axwt-2ubj" }, { "vulnerability": "VCID-zdf2-nmqk-kkgv" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ruby@2.4.6-91%3Farch=el7cf" } ], "references": [ { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8325.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "5.3", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-8325.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2019-8325", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.00326", "scoring_system": "epss", "scoring_elements": "0.55816", "published_at": "2026-05-30T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2019-8325" }, { "reference_url": "https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "" }, { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8320", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8320" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8321", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8321" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8322", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8322" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8323", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8323" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8324", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8324" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8325", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8325" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://lists.debian.org/debian-lts-announce/2020/08/msg00027.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://lists.debian.org/debian-lts-announce/2020/08/msg00027.html" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=1692522", "reference_id": "1692522", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1692522" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925987", "reference_id": "925987", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925987" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8325", "reference_id": "CVE-2019-8325", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-8325" }, { "reference_url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rubygems-update/CVE-2019-8325.yml", "reference_id": "CVE-2019-8325.YML", "reference_type": "", "scores": [ { "value": "7.5", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" }, { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rubygems-update/CVE-2019-8325.yml" }, { "reference_url": "https://github.com/advisories/GHSA-4wm8-fjv7-j774", "reference_id": "GHSA-4wm8-fjv7-j774", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-4wm8-fjv7-j774" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1148", "reference_id": "RHSA-2019:1148", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1148" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1150", "reference_id": "RHSA-2019:1150", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1150" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2019:1235", "reference_id": "RHSA-2019:1235", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2019:1235" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2020:2769", "reference_id": "RHSA-2020:2769", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2020:2769" }, { "reference_url": "https://usn.ubuntu.com/3945-1/", "reference_id": "USN-3945-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/3945-1/" } ], "weaknesses": [ { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 74, "name": "Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')", "description": "The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." }, { "cwe_id": 88, "name": "Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')", "description": "The product constructs a string for a command to be executed by a separate component in another control sphere, but it does not properly delimit the intended arguments, options, or switches within that command string." } ], "exploits": [], "severity_range_score": "5.3 - 8.9", "exploitability": "0.5", "weighted_severity": "8.0", "risk_score": 4.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-zdf2-nmqk-kkgv" }