Search for packages
| purl | pkg:rpm/redhat/rh-ruby23-rubygem-memory_buffer@0.1.0-2?arch=el7cf |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 3.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-65ha-wgr4-eqd4
Aliases: CVE-2013-4492 GHSA-r5hc-9xx5-97rw |
Reflective XSS Vulnerability When a translation is missing, the HTML exception message raised does not escape the keys. Under certain common configurations this string can contain user input which would allow an attacker to execute a reflective XSS attack. | There are no reported fixed by versions. |
|
VCID-dysm-mxnw-xfgu
Aliases: CVE-2017-2639 |
CloudForms: cloudforms fails to properly check certificates when communicating with RHEV and OpenShift and custom CA | There are no reported fixed by versions. |
|
VCID-rqh3-c53s-vuee
Aliases: CVE-2017-15125 |
cloudforms: XSS in self-service UI snapshot feature | There are no reported fixed by versions. |
|
VCID-z5na-uzmt-x3gr
Aliases: CVE-2016-4457 |
CFME: default certificate used across all installs | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T14:49:18.675636+00:00 | RedHat Importer | Affected by | VCID-65ha-wgr4-eqd4 | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-4492.json | 38.0.0 |
| 2026-04-01T14:36:28.325296+00:00 | RedHat Importer | Affected by | VCID-z5na-uzmt-x3gr | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-4457.json | 38.0.0 |
| 2026-04-01T14:30:53.935483+00:00 | RedHat Importer | Affected by | VCID-dysm-mxnw-xfgu | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-2639.json | 38.0.0 |
| 2026-04-01T14:26:39.727262+00:00 | RedHat Importer | Affected by | VCID-rqh3-c53s-vuee | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-15125.json | 38.0.0 |