Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:gem/rubyipmi@0.12.0
purl pkg:gem/rubyipmi@0.12.0
Next non-vulnerable version 0.13.0
Latest non-vulnerable version 0.13.0
Risk 4.0
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-4dyt-4yhc-p7cd
Aliases:
CVE-2026-0980
GHSA-hfcp-477w-3wjw
rubyipmi is vulnerable to OS Command Injection through malicious usernames A flaw was found in rubyipmi, a gem used in the Baseboard Management Controller (BMC) component of Red Hat Satellite. An authenticated attacker with host creation or update permissions could exploit this vulnerability by crafting a malicious username for the BMC interface. This could lead to remote code execution (RCE) on the system.
0.13.0
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-17T00:27:42.776845+00:00 GitLab Importer Affected by VCID-4dyt-4yhc-p7cd https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/rubyipmi/CVE-2026-0980.yml 38.4.0
2026-04-12T01:52:23.637488+00:00 GitLab Importer Affected by VCID-4dyt-4yhc-p7cd https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/rubyipmi/CVE-2026-0980.yml 38.3.0
2026-04-03T02:00:43.094743+00:00 GitLab Importer Affected by VCID-4dyt-4yhc-p7cd https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/rubyipmi/CVE-2026-0980.yml 38.1.0