Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/26973?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/26973?format=api", "vulnerability_id": "VCID-v5s7-ydvk-p3fy", "summary": "JSON gem has Improper Input Validation vulnerability\nThe JSON gem before 1.5.5, 1.6.x before 1.6.8, and 1.7.x before 1.7.7 for Ruby allows remote attackers to cause a denial of service (resource consumption) or bypass the mass assignment protection mechanism via a crafted JSON document that triggers the creation of arbitrary Ruby symbols or certain internal objects, as demonstrated by conducting a SQL injection attack against Ruby on Rails, aka \"Unsafe Object Creation Vulnerability.\"", "aliases": [ { "alias": "CVE-2013-0269" }, { "alias": "GHSA-x457-cw4h-hq5f" }, { "alias": "OSV-101137" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/360603?format=api", "purl": "pkg:deb/debian/ruby-json@1.7.3-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-json@1.7.3-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/360605?format=api", "purl": "pkg:deb/debian/ruby-json@2.19.4%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-json@2.19.4%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/360604?format=api", "purl": "pkg:deb/debian/ruby-json@2.3.0%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-json@2.3.0%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/360602?format=api", "purl": "pkg:deb/debian/ruby-json@2.6.3%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-json@2.6.3%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/360606?format=api", "purl": "pkg:deb/debian/ruby-json@2.9.1%2Bdfsg-1?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-json@2.9.1%252Bdfsg-1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/337086?format=api", "purl": "pkg:ebuild/dev-lang/ruby@2.0.0_p598", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/ruby@2.0.0_p598" }, { "url": "http://public2.vulnerablecode.io/api/packages/60540?format=api", "purl": "pkg:gem/json@1.5.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.5.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/60541?format=api", "purl": "pkg:gem/json@1.6.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.6.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/60542?format=api", "purl": "pkg:gem/json@1.7.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.7.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/173369?format=api", "purl": "pkg:maven/org.jruby/jruby@1.7.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fakr-zn3n-e3eh" }, { "vulnerability": "VCID-z8t9-md9f-qfde" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jruby/jruby@1.7.3" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/380175?format=api", "purl": "pkg:gem/json@0.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@0.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/380176?format=api", "purl": "pkg:gem/json@0.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@0.4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/380177?format=api", "purl": "pkg:gem/json@0.4.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@0.4.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/380178?format=api", "purl": "pkg:gem/json@0.4.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@0.4.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/380179?format=api", "purl": "pkg:gem/json@1.0.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.0.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/380180?format=api", "purl": "pkg:gem/json@1.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/380181?format=api", "purl": "pkg:gem/json@1.0.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.0.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/380182?format=api", "purl": "pkg:gem/json@1.0.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.0.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/380183?format=api", "purl": "pkg:gem/json@1.0.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.0.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/366998?format=api", "purl": "pkg:gem/json@1.1.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.1.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/380184?format=api", "purl": "pkg:gem/json@1.1.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.1.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/380185?format=api", "purl": "pkg:gem/json@1.1.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.1.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/380186?format=api", "purl": "pkg:gem/json@1.1.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.1.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/380187?format=api", "purl": "pkg:gem/json@1.1.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.1.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/380188?format=api", "purl": "pkg:gem/json@1.1.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.1.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/380189?format=api", "purl": "pkg:gem/json@1.1.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.1.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/380190?format=api", "purl": "pkg:gem/json@1.1.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.1.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/380191?format=api", "purl": "pkg:gem/json@1.1.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.1.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/380192?format=api", "purl": "pkg:gem/json@1.1.9", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.1.9" }, { "url": "http://public2.vulnerablecode.io/api/packages/380193?format=api", "purl": "pkg:gem/json@1.2.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.2.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/380194?format=api", "purl": "pkg:gem/json@1.2.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.2.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/380195?format=api", "purl": "pkg:gem/json@1.2.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.2.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/380196?format=api", "purl": "pkg:gem/json@1.2.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.2.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/380197?format=api", "purl": "pkg:gem/json@1.2.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.2.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/380198?format=api", "purl": "pkg:gem/json@1.4.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.4.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/380199?format=api", "purl": "pkg:gem/json@1.4.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.4.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/380200?format=api", "purl": "pkg:gem/json@1.4.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.4.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/380201?format=api", "purl": "pkg:gem/json@1.4.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.4.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/380202?format=api", "purl": "pkg:gem/json@1.4.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.4.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/380203?format=api", "purl": "pkg:gem/json@1.4.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.4.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/380204?format=api", "purl": "pkg:gem/json@1.4.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.4.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/380205?format=api", "purl": "pkg:gem/json@1.5.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.5.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/380206?format=api", "purl": "pkg:gem/json@1.5.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.5.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/380207?format=api", "purl": "pkg:gem/json@1.5.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.5.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/380208?format=api", "purl": "pkg:gem/json@1.5.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.5.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/380209?format=api", "purl": "pkg:gem/json@1.5.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.5.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/60540?format=api", "purl": "pkg:gem/json@1.5.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.5.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/337409?format=api", "purl": "pkg:gem/json@1.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/320392?format=api", "purl": "pkg:gem/json@1.6.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.6.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/380210?format=api", "purl": "pkg:gem/json@1.6.0.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.6.0.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/380211?format=api", "purl": "pkg:gem/json@1.6.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.6.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/380212?format=api", "purl": "pkg:gem/json@1.6.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.6.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/380213?format=api", "purl": "pkg:gem/json@1.6.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.6.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/380214?format=api", "purl": "pkg:gem/json@1.6.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.6.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/380215?format=api", "purl": "pkg:gem/json@1.6.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.6.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/380216?format=api", "purl": "pkg:gem/json@1.6.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.6.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/380217?format=api", "purl": "pkg:gem/json@1.6.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.6.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/60541?format=api", "purl": "pkg:gem/json@1.6.8", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.6.8" }, { "url": "http://public2.vulnerablecode.io/api/packages/337410?format=api", "purl": "pkg:gem/json@1.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/320378?format=api", "purl": "pkg:gem/json@1.7.0", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.7.0" }, { "url": "http://public2.vulnerablecode.io/api/packages/380218?format=api", "purl": "pkg:gem/json@1.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.7.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/380219?format=api", "purl": "pkg:gem/json@1.7.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.7.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/380220?format=api", "purl": "pkg:gem/json@1.7.3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.7.3" }, { "url": "http://public2.vulnerablecode.io/api/packages/380221?format=api", "purl": "pkg:gem/json@1.7.4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.7.4" }, { "url": "http://public2.vulnerablecode.io/api/packages/380222?format=api", "purl": "pkg:gem/json@1.7.5", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.7.5" }, { "url": "http://public2.vulnerablecode.io/api/packages/380223?format=api", "purl": "pkg:gem/json@1.7.6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.7.6" }, { "url": "http://public2.vulnerablecode.io/api/packages/60542?format=api", "purl": "pkg:gem/json@1.7.7", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-v6at-eh29-mker" }, { "vulnerability": "VCID-zk6j-np2r-skdc" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:gem/json@1.7.7" }, { "url": "http://public2.vulnerablecode.io/api/packages/367131?format=api", "purl": "pkg:maven/org.jruby/jruby@1.7.1", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fakr-zn3n-e3eh" }, { "vulnerability": "VCID-nt2h-w3yg-fubd" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-z8t9-md9f-qfde" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jruby/jruby@1.7.1" }, { "url": "http://public2.vulnerablecode.io/api/packages/367188?format=api", "purl": "pkg:maven/org.jruby/jruby@1.7.2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-fakr-zn3n-e3eh" }, { "vulnerability": "VCID-nt2h-w3yg-fubd" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-z8t9-md9f-qfde" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:maven/org.jruby/jruby@1.7.2" }, { "url": "http://public2.vulnerablecode.io/api/packages/300314?format=api", "purl": "pkg:rpm/redhat/candlepin@0.7.24-1?arch=el6_3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-661g-8uu4-wuca" }, { "vulnerability": "VCID-87gs-d4bb-z3e7" }, { "vulnerability": "VCID-nbfj-wyqb-pkes" }, { "vulnerability": "VCID-sfcw-t1ch-b7dr" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-vta6-rneu-jbgg" }, { "vulnerability": "VCID-xyt7-wyur-vyea" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/candlepin@0.7.24-1%3Farch=el6_3" }, { "url": "http://public2.vulnerablecode.io/api/packages/300324?format=api", "purl": "pkg:rpm/redhat/katello@1.2.1.1-1h?arch=el6_4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-661g-8uu4-wuca" }, { "vulnerability": "VCID-87gs-d4bb-z3e7" }, { "vulnerability": "VCID-nbfj-wyqb-pkes" }, { "vulnerability": "VCID-sfcw-t1ch-b7dr" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-vta6-rneu-jbgg" }, { "vulnerability": "VCID-xyt7-wyur-vyea" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/katello@1.2.1.1-1h%3Farch=el6_4" }, { "url": "http://public2.vulnerablecode.io/api/packages/300318?format=api", "purl": "pkg:rpm/redhat/katello-configure@1.2.3.1-4h?arch=el6_4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-661g-8uu4-wuca" }, { "vulnerability": "VCID-87gs-d4bb-z3e7" }, { "vulnerability": "VCID-nbfj-wyqb-pkes" }, { "vulnerability": "VCID-sfcw-t1ch-b7dr" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-vta6-rneu-jbgg" }, { "vulnerability": "VCID-xyt7-wyur-vyea" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/katello-configure@1.2.3.1-4h%3Farch=el6_4" }, { "url": "http://public2.vulnerablecode.io/api/packages/301953?format=api", "purl": "pkg:rpm/redhat/ruby193-ruby@1.9.3.327-28?arch=el6", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-nbfj-wyqb-pkes" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ruby193-ruby@1.9.3.327-28%3Farch=el6" }, { "url": "http://public2.vulnerablecode.io/api/packages/300326?format=api", "purl": "pkg:rpm/redhat/rubygem-actionpack@1:3.0.10-12?arch=el6cf", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-661g-8uu4-wuca" }, { "vulnerability": "VCID-87gs-d4bb-z3e7" }, { "vulnerability": "VCID-nbfj-wyqb-pkes" }, { "vulnerability": "VCID-sfcw-t1ch-b7dr" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-vta6-rneu-jbgg" }, { "vulnerability": "VCID-xyt7-wyur-vyea" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-actionpack@1:3.0.10-12%3Farch=el6cf" }, { "url": "http://public2.vulnerablecode.io/api/packages/300322?format=api", "purl": "pkg:rpm/redhat/rubygem-activemodel@3.0.10-3?arch=el6cf", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-661g-8uu4-wuca" }, { "vulnerability": "VCID-87gs-d4bb-z3e7" }, { "vulnerability": "VCID-nbfj-wyqb-pkes" }, { "vulnerability": "VCID-sfcw-t1ch-b7dr" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-vta6-rneu-jbgg" }, { "vulnerability": "VCID-xyt7-wyur-vyea" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-activemodel@3.0.10-3%3Farch=el6cf" }, { "url": "http://public2.vulnerablecode.io/api/packages/300323?format=api", "purl": "pkg:rpm/redhat/rubygem-delayed_job@2.1.4-3?arch=el6cf", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-64vt-66fw-53dk" }, { "vulnerability": "VCID-661g-8uu4-wuca" }, { "vulnerability": "VCID-87gs-d4bb-z3e7" }, { "vulnerability": "VCID-h6mf-a3pd-d3hb" }, { "vulnerability": "VCID-nbfj-wyqb-pkes" }, { "vulnerability": "VCID-ngv1-73vp-mbac" }, { "vulnerability": "VCID-sfcw-t1ch-b7dr" }, { "vulnerability": "VCID-ts7r-dady-tua3" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-vta6-rneu-jbgg" }, { "vulnerability": "VCID-xyt7-wyur-vyea" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-delayed_job@2.1.4-3%3Farch=el6cf" }, { "url": "http://public2.vulnerablecode.io/api/packages/300310?format=api", "purl": "pkg:rpm/redhat/rubygem-json@1.7.3-2?arch=el6_3", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-661g-8uu4-wuca" }, { "vulnerability": "VCID-87gs-d4bb-z3e7" }, { "vulnerability": "VCID-nbfj-wyqb-pkes" }, { "vulnerability": "VCID-sfcw-t1ch-b7dr" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-vta6-rneu-jbgg" }, { "vulnerability": "VCID-xyt7-wyur-vyea" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-json@1.7.3-2%3Farch=el6_3" }, { "url": "http://public2.vulnerablecode.io/api/packages/275342?format=api", "purl": "pkg:rpm/redhat/rubygem-json@1.7.3-2?arch=el6op", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-85ng-9s5r-8ube" }, { "vulnerability": "VCID-a5cm-16yg-9fbn" }, { "vulnerability": "VCID-ba3q-zwwf-x3ff" }, { "vulnerability": "VCID-nbfj-wyqb-pkes" }, { "vulnerability": "VCID-q476-m8yr-rqgb" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-y1e4-a5d7-9kbd" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-json@1.7.3-2%3Farch=el6op" }, { "url": "http://public2.vulnerablecode.io/api/packages/300311?format=api", "purl": "pkg:rpm/redhat/rubygem-nokogiri@1.5.0-0.9.beta4?arch=el6cf", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-64vt-66fw-53dk" }, { "vulnerability": "VCID-661g-8uu4-wuca" }, { "vulnerability": "VCID-7shb-yf2r-z3h4" }, { "vulnerability": "VCID-87gs-d4bb-z3e7" }, { "vulnerability": "VCID-h6mf-a3pd-d3hb" }, { "vulnerability": "VCID-nbfj-wyqb-pkes" }, { "vulnerability": "VCID-ngv1-73vp-mbac" }, { "vulnerability": "VCID-sfcw-t1ch-b7dr" }, { "vulnerability": "VCID-ts7r-dady-tua3" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-vta6-rneu-jbgg" }, { "vulnerability": "VCID-xyt7-wyur-vyea" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-nokogiri@1.5.0-0.9.beta4%3Farch=el6cf" }, { "url": "http://public2.vulnerablecode.io/api/packages/300309?format=api", "purl": "pkg:rpm/redhat/rubygem-rack@1:1.3.0-4?arch=el6cf", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-661g-8uu4-wuca" }, { "vulnerability": "VCID-87gs-d4bb-z3e7" }, { "vulnerability": "VCID-nbfj-wyqb-pkes" }, { "vulnerability": "VCID-sfcw-t1ch-b7dr" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-vta6-rneu-jbgg" }, { "vulnerability": "VCID-xyt7-wyur-vyea" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-rack@1:1.3.0-4%3Farch=el6cf" }, { "url": "http://public2.vulnerablecode.io/api/packages/300327?format=api", "purl": "pkg:rpm/redhat/rubygem-rails_warden@0.5.5-2?arch=el6cf", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-64vt-66fw-53dk" }, { "vulnerability": "VCID-661g-8uu4-wuca" }, { "vulnerability": "VCID-87gs-d4bb-z3e7" }, { "vulnerability": "VCID-h6mf-a3pd-d3hb" }, { "vulnerability": "VCID-nbfj-wyqb-pkes" }, { "vulnerability": "VCID-ngv1-73vp-mbac" }, { "vulnerability": "VCID-sfcw-t1ch-b7dr" }, { "vulnerability": "VCID-ts7r-dady-tua3" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-vta6-rneu-jbgg" }, { "vulnerability": "VCID-xyt7-wyur-vyea" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-rails_warden@0.5.5-2%3Farch=el6cf" }, { "url": "http://public2.vulnerablecode.io/api/packages/300325?format=api", "purl": "pkg:rpm/redhat/rubygem-rdoc@3.8-6?arch=el6cf", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-64vt-66fw-53dk" }, { "vulnerability": "VCID-661g-8uu4-wuca" }, { "vulnerability": "VCID-87gs-d4bb-z3e7" }, { "vulnerability": "VCID-h6mf-a3pd-d3hb" }, { "vulnerability": "VCID-nbfj-wyqb-pkes" }, { "vulnerability": "VCID-ngv1-73vp-mbac" }, { "vulnerability": "VCID-sfcw-t1ch-b7dr" }, { "vulnerability": "VCID-ts7r-dady-tua3" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-vta6-rneu-jbgg" }, { "vulnerability": "VCID-xyt7-wyur-vyea" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-rdoc@3.8-6%3Farch=el6cf" }, { "url": "http://public2.vulnerablecode.io/api/packages/301947?format=api", "purl": "pkg:rpm/redhat/rubygem-rdoc@3.8-9?arch=el6op", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-nbfj-wyqb-pkes" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-rdoc@3.8-9%3Farch=el6op" }, { "url": "http://public2.vulnerablecode.io/api/packages/300312?format=api", "purl": "pkg:rpm/redhat/thumbslug@0.0.28.1-1?arch=el6_4", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-661g-8uu4-wuca" }, { "vulnerability": "VCID-87gs-d4bb-z3e7" }, { "vulnerability": "VCID-nbfj-wyqb-pkes" }, { "vulnerability": "VCID-sfcw-t1ch-b7dr" }, { "vulnerability": "VCID-v5s7-ydvk-p3fy" }, { "vulnerability": "VCID-vta6-rneu-jbgg" }, { "vulnerability": "VCID-xyt7-wyur-vyea" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/thumbslug@0.0.28.1-1%3Farch=el6_4" } ], "references": [ { "reference_url": "http://lists.apple.com/archives/security-announce/2013/Oct/msg00006.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.apple.com/archives/security-announce/2013/Oct/msg00006.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00001.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00001.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00015.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00015.html" }, { "reference_url": "http://lists.opensuse.org/opensuse-updates/2013-04/msg00034.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://lists.opensuse.org/opensuse-updates/2013-04/msg00034.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2013-0686.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0686.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2013-0701.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://rhn.redhat.com/errata/RHSA-2013-0701.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2013-1028.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://rhn.redhat.com/errata/RHSA-2013-1028.html" }, { "reference_url": "http://rhn.redhat.com/errata/RHSA-2013-1147.html", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://rhn.redhat.com/errata/RHSA-2013-1147.html" }, { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0269.json", "reference_id": "", "reference_type": "", "scores": [], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0269.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2013-0269", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.15424", "scoring_system": "epss", "scoring_elements": "0.94762", "published_at": "2026-05-29T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2013-0269" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-0269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-0269" }, { "reference_url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0269", "reference_id": "", "reference_type": "", "scores": [], "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0269" }, { "reference_url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/82010", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/82010" }, { "reference_url": "https://github.com/flori/json", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/flori/json" }, { "reference_url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/json/CVE-2013-0269.yml", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/json/CVE-2013-0269.yml" }, { "reference_url": "https://groups.google.com/forum/?fromgroups=#!topic/rubyonrails-security/4_YvCpLzL58", "reference_id": "", "reference_type": "", "scores": [], "url": "https://groups.google.com/forum/?fromgroups=#!topic/rubyonrails-security/4_YvCpLzL58" }, { "reference_url": "https://groups.google.com/group/rubyonrails-security/msg/d8e0db6e08c81428?dmode=source&output=gplain", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://groups.google.com/group/rubyonrails-security/msg/d8e0db6e08c81428?dmode=source&output=gplain" }, { "reference_url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0269", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-0269" }, { "reference_url": "https://web.archive.org/web/20130228082541/http://www.securityfocus.com/bid/57899", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20130228082541/http://www.securityfocus.com/bid/57899" }, { "reference_url": "https://web.archive.org/web/20160331131233/http://spreecommerce.com/blog/multiple-security-vulnerabilities-fixed", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20160331131233/http://spreecommerce.com/blog/multiple-security-vulnerabilities-fixed" }, { "reference_url": "https://web.archive.org/web/20160808163226/https://puppet.com/security/cve/cve-2013-0269", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "https://web.archive.org/web/20160808163226/https://puppet.com/security/cve/cve-2013-0269" }, { "reference_url": "http://weblog.rubyonrails.org/2013/2/11/SEC-ANN-Rails-3-2-12-3-1-11-and-2-3-17-have-been-released", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://weblog.rubyonrails.org/2013/2/11/SEC-ANN-Rails-3-2-12-3-1-11-and-2-3-17-have-been-released" }, { "reference_url": "http://weblog.rubyonrails.org/2013/2/11/SEC-ANN-Rails-3-2-12-3-1-11-and-2-3-17-have-been-released/", "reference_id": "", "reference_type": "", "scores": [], "url": "http://weblog.rubyonrails.org/2013/2/11/SEC-ANN-Rails-3-2-12-3-1-11-and-2-3-17-have-been-released/" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2013/02/11/7", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2013/02/11/7" }, { "reference_url": "http://www.openwall.com/lists/oss-security/2013/02/11/8", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.openwall.com/lists/oss-security/2013/02/11/8" }, { "reference_url": "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.426862", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.426862" }, { "reference_url": "http://www.ubuntu.com/usn/USN-1733-1", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.ubuntu.com/usn/USN-1733-1" }, { "reference_url": "http://www.zweitag.de/en/blog/ruby-on-rails-vulnerable-to-mass-assignment-and-sql-injection", "reference_id": "", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "generic_textual", "scoring_elements": "" } ], "url": "http://www.zweitag.de/en/blog/ruby-on-rails-vulnerable-to-mass-assignment-and-sql-injection" }, { "reference_url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700436", "reference_id": "700436", "reference_type": "", "scores": [], "url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=700436" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=909029", "reference_id": "909029", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=909029" }, { "reference_url": "https://github.com/advisories/GHSA-x457-cw4h-hq5f", "reference_id": "GHSA-x457-cw4h-hq5f", "reference_type": "", "scores": [ { "value": "HIGH", "scoring_system": "cvssv3.1_qr", "scoring_elements": "" } ], "url": "https://github.com/advisories/GHSA-x457-cw4h-hq5f" }, { "reference_url": "https://security.gentoo.org/glsa/201412-27", "reference_id": "GLSA-201412-27", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/201412-27" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:0686", "reference_id": "RHSA-2013:0686", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:0686" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:0701", "reference_id": "RHSA-2013:0701", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:0701" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:1028", "reference_id": "RHSA-2013:1028", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:1028" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:1147", "reference_id": "RHSA-2013:1147", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:1147" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2013:1185", "reference_id": "RHSA-2013:1185", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2013:1185" }, { "reference_url": "https://usn.ubuntu.com/1733-1/", "reference_id": "USN-1733-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/1733-1/" } ], "weaknesses": [ { "cwe_id": 20, "name": "Improper Input Validation", "description": "The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly." }, { "cwe_id": 502, "name": "Deserialization of Untrusted Data", "description": "The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid." }, { "cwe_id": 1035, "name": "OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017." }, { "cwe_id": 937, "name": "OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities", "description": "Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013." } ], "exploits": [], "severity_range_score": "7.0 - 8.9", "exploitability": null, "weighted_severity": null, "risk_score": null, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-v5s7-ydvk-p3fy" }