Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:rpm/redhat/rubygem-ruby2ruby@1.2.4-3?arch=el6op
purl pkg:rpm/redhat/rubygem-ruby2ruby@1.2.4-3?arch=el6op
Next non-vulnerable version None.
Latest non-vulnerable version None.
Risk 3.1
Vulnerabilities affecting this package (8)
Vulnerability Summary Fixed by
VCID-8du4-pguk-xufz
Aliases:
CVE-2014-3602
OpenShift: /proc/net/tcp information disclosure There are no reported fixed by versions.
VCID-dmps-nju4-syb1
Aliases:
CVE-2014-0234
openshift-origin-broker: default password creation There are no reported fixed by versions.
VCID-hx86-64zz-8bds
Aliases:
CVE-2013-2034
GHSA-fg4r-f9j2-36mw
Jenkins Cross-Site Request Forgery vulnerabilities Multiple cross-site request forgery (CSRF) vulnerabilities in Jenkins before 1.514, LTS before 1.509.1, and Enterprise 1.466.x before 1.466.14.1 and 1.480.x before 1.480.4.1 allow remote attackers to hijack the authentication of administrators for requests that (1) execute arbitrary code or (2) initiate deployment of binaries to a Maven repository via unspecified vectors. There are no reported fixed by versions.
VCID-hxhy-qrkz-fkf5
Aliases:
CVE-2013-1808
Cross-site scripting (XSS) vulnerability in ZeroClipboard.swf and ZeroClipboard10.swf in ZeroClipboard before 1.0.8, as used in em-shorty, RepRapCalculator, Fulcrum, Django, aCMS, and other products, allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: this is might be the same vulnerability as CVE-2013-1463. If so, it is likely that CVE-2013-1463 will be REJECTed. There are no reported fixed by versions.
VCID-nfkr-vhvf-j3hz
Aliases:
CVE-2014-0175
mcollective has a default password set at install There are no reported fixed by versions.
VCID-ww5y-dfs2-ubef
Aliases:
CVE-2014-3674
Enterprise: gears fail to properly isolate network traffic There are no reported fixed by versions.
VCID-x2kn-aegv-9ya6
Aliases:
CVE-2014-0084
GHSA-756m-3qf2-hp58
openshift-origin-node Improper Input Validation vulnerability Ruby gem openshift-origin-node before 2014-02-14 does not contain a cronjob timeout which could result in a denial of service in cron.daily and cron.weekly. There are no reported fixed by versions.
VCID-z5ed-ujrf-2ka2
Aliases:
CVE-2013-2033
GHSA-826f-32qm-vm3j
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CVE-2013-2033 Jenkins: Build Description XSS There are no reported fixed by versions.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-06-04T18:22:37.755180+00:00 RedHat Importer Affected by VCID-hxhy-qrkz-fkf5 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1808.json 38.6.0
2026-06-04T18:21:31.598797+00:00 RedHat Importer Affected by VCID-hx86-64zz-8bds https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2034.json 38.6.0
2026-06-04T18:21:29.378280+00:00 RedHat Importer Affected by VCID-z5ed-ujrf-2ka2 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2033.json 38.6.0
2026-06-04T18:18:33.662480+00:00 RedHat Importer Affected by VCID-x2kn-aegv-9ya6 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0084.json 38.6.0
2026-06-04T18:17:57.940975+00:00 RedHat Importer Affected by VCID-dmps-nju4-syb1 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0234.json 38.6.0
2026-06-04T18:17:45.270311+00:00 RedHat Importer Affected by VCID-nfkr-vhvf-j3hz https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0175.json 38.6.0
2026-06-04T18:17:04.533750+00:00 RedHat Importer Affected by VCID-8du4-pguk-xufz https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3602.json 38.6.0
2026-06-04T18:16:32.640641+00:00 RedHat Importer Affected by VCID-ww5y-dfs2-ubef https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3674.json 38.6.0