Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:rpm/redhat/rubygem-rake@0.8.7-2.1?arch=el6
Typerpm
Namespaceredhat
Namerubygem-rake
Version0.8.7-2.1
Qualifiers
arch el6
Subpath
Is_vulnerabletrue
Next_non_vulnerable_versionnull
Latest_non_vulnerable_versionnull
Affected_by_vulnerabilities
0
url VCID-1vr8-za4z-kuaq
vulnerability_id VCID-1vr8-za4z-kuaq
summary cumin: allows for editing internal Condor job attributes
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3459.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3459.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-3459
reference_id
reference_type
scores
0
value 0.00423
scoring_system epss
scoring_elements 0.62431
published_at 2026-06-04T12:55:00Z
1
value 0.00423
scoring_system epss
scoring_elements 0.62478
published_at 2026-06-05T12:55:00Z
2
value 0.00423
scoring_system epss
scoring_elements 0.62486
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-3459
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=846501
reference_id 846501
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=846501
3
reference_url https://access.redhat.com/errata/RHSA-2012:1278
reference_id RHSA-2012:1278
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1278
4
reference_url https://access.redhat.com/errata/RHSA-2012:1281
reference_id RHSA-2012:1281
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1281
fixed_packages
aliases CVE-2012-3459
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1vr8-za4z-kuaq
1
url VCID-7s1g-wm88-2kej
vulnerability_id VCID-7s1g-wm88-2kej
summary cumin: multiple XSS flaws
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2683.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2683.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-2683
reference_id
reference_type
scores
0
value 0.00467
scoring_system epss
scoring_elements 0.64811
published_at 2026-06-04T12:55:00Z
1
value 0.00467
scoring_system epss
scoring_elements 0.64853
published_at 2026-06-05T12:55:00Z
2
value 0.00467
scoring_system epss
scoring_elements 0.64863
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-2683
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=830243
reference_id 830243
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=830243
3
reference_url https://access.redhat.com/errata/RHSA-2012:1278
reference_id RHSA-2012:1278
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1278
4
reference_url https://access.redhat.com/errata/RHSA-2012:1281
reference_id RHSA-2012:1281
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1281
fixed_packages
aliases CVE-2012-2683
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7s1g-wm88-2kej
2
url VCID-8du4-pguk-xufz
vulnerability_id VCID-8du4-pguk-xufz
summary OpenShift: /proc/net/tcp information disclosure
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3602.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3602.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-3602
reference_id
reference_type
scores
0
value 0.00049
scoring_system epss
scoring_elements 0.15532
published_at 2026-06-04T12:55:00Z
1
value 0.00049
scoring_system epss
scoring_elements 0.15614
published_at 2026-06-05T12:55:00Z
2
value 0.00049
scoring_system epss
scoring_elements 0.15604
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-3602
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1131680
reference_id 1131680
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1131680
3
reference_url https://access.redhat.com/errata/RHSA-2014:1796
reference_id RHSA-2014:1796
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1796
4
reference_url https://access.redhat.com/errata/RHSA-2014:1906
reference_id RHSA-2014:1906
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1906
fixed_packages
aliases CVE-2014-3602
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8du4-pguk-xufz
3
url VCID-93xk-hds8-abde
vulnerability_id VCID-93xk-hds8-abde
summary The command_give_request_ad function in condor_startd.V6/command.cpp Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 allows remote attackers to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condor_startd port, which leaks the ClaimId.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3493.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3493.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-3493
reference_id
reference_type
scores
0
value 0.00765
scoring_system epss
scoring_elements 0.73801
published_at 2026-06-04T12:55:00Z
1
value 0.00765
scoring_system epss
scoring_elements 0.73838
published_at 2026-06-05T12:55:00Z
2
value 0.00765
scoring_system epss
scoring_elements 0.73843
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-3493
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688210
reference_id 688210
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688210
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=848222
reference_id 848222
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=848222
4
reference_url https://access.redhat.com/errata/RHSA-2012:1278
reference_id RHSA-2012:1278
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1278
5
reference_url https://access.redhat.com/errata/RHSA-2012:1281
reference_id RHSA-2012:1281
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1281
fixed_packages
aliases CVE-2012-3493
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-93xk-hds8-abde
4
url VCID-9apv-cwbq-nbfb
vulnerability_id VCID-9apv-cwbq-nbfb
summary cumin: session fixation flaw
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2735.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2735.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-2735
reference_id
reference_type
scores
0
value 0.0039
scoring_system epss
scoring_elements 0.60343
published_at 2026-06-04T12:55:00Z
1
value 0.0039
scoring_system epss
scoring_elements 0.60389
published_at 2026-06-05T12:55:00Z
2
value 0.0039
scoring_system epss
scoring_elements 0.60393
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-2735
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=832151
reference_id 832151
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=832151
3
reference_url https://access.redhat.com/errata/RHSA-2012:1278
reference_id RHSA-2012:1278
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1278
4
reference_url https://access.redhat.com/errata/RHSA-2012:1281
reference_id RHSA-2012:1281
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1281
fixed_packages
aliases CVE-2012-2735
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9apv-cwbq-nbfb
5
url VCID-bcj2-fcpf-zkgm
vulnerability_id VCID-bcj2-fcpf-zkgm
summary src/condor_schedd.V6/schedd.cpp in Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 does not properly check the permissions of jobs, which allows remote authenticated users to remove arbitrary idle jobs via unspecified vectors.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3491.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3491.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-3491
reference_id
reference_type
scores
0
value 0.0112
scoring_system epss
scoring_elements 0.78574
published_at 2026-06-04T12:55:00Z
1
value 0.0112
scoring_system epss
scoring_elements 0.78602
published_at 2026-06-05T12:55:00Z
2
value 0.0112
scoring_system epss
scoring_elements 0.7861
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-3491
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688210
reference_id 688210
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688210
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=848214
reference_id 848214
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=848214
4
reference_url https://access.redhat.com/errata/RHSA-2012:1278
reference_id RHSA-2012:1278
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1278
5
reference_url https://access.redhat.com/errata/RHSA-2012:1281
reference_id RHSA-2012:1281
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1281
fixed_packages
aliases CVE-2012-3491
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bcj2-fcpf-zkgm
6
url VCID-bzkz-63wq-xkcz
vulnerability_id VCID-bzkz-63wq-xkcz
summary cumin: DoS via large image requests
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2685.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2685.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-2685
reference_id
reference_type
scores
0
value 0.01178
scoring_system epss
scoring_elements 0.7908
published_at 2026-06-04T12:55:00Z
1
value 0.01178
scoring_system epss
scoring_elements 0.79106
published_at 2026-06-05T12:55:00Z
2
value 0.01178
scoring_system epss
scoring_elements 0.79112
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-2685
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=830248
reference_id 830248
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=830248
3
reference_url https://access.redhat.com/errata/RHSA-2012:1278
reference_id RHSA-2012:1278
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1278
4
reference_url https://access.redhat.com/errata/RHSA-2012:1281
reference_id RHSA-2012:1281
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1281
fixed_packages
aliases CVE-2012-2685
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bzkz-63wq-xkcz
7
url VCID-d6sb-hzzh-wugp
vulnerability_id VCID-d6sb-hzzh-wugp
summary cumin: SQL injection flaw
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2684.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2684.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-2684
reference_id
reference_type
scores
0
value 0.00605
scoring_system epss
scoring_elements 0.70013
published_at 2026-06-04T12:55:00Z
1
value 0.00605
scoring_system epss
scoring_elements 0.70054
published_at 2026-06-05T12:55:00Z
2
value 0.00605
scoring_system epss
scoring_elements 0.70062
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-2684
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=830245
reference_id 830245
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=830245
3
reference_url https://access.redhat.com/errata/RHSA-2012:1278
reference_id RHSA-2012:1278
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1278
4
reference_url https://access.redhat.com/errata/RHSA-2012:1281
reference_id RHSA-2012:1281
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1281
fixed_packages
aliases CVE-2012-2684
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d6sb-hzzh-wugp
8
url VCID-dm59-zqk5-vbch
vulnerability_id VCID-dm59-zqk5-vbch
summary qpid-cpp: long arrays of zero-width types cause a denial of service
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4458.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4458.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-4458
reference_id
reference_type
scores
0
value 0.02502
scoring_system epss
scoring_elements 0.85614
published_at 2026-06-04T12:55:00Z
1
value 0.02502
scoring_system epss
scoring_elements 0.85636
published_at 2026-06-05T12:55:00Z
2
value 0.02502
scoring_system epss
scoring_elements 0.85641
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-4458
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=861234
reference_id 861234
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=861234
3
reference_url https://access.redhat.com/errata/RHSA-2013:0561
reference_id RHSA-2013:0561
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0561
4
reference_url https://access.redhat.com/errata/RHSA-2013:0562
reference_id RHSA-2013:0562
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0562
fixed_packages
aliases CVE-2012-4458
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dm59-zqk5-vbch
9
url VCID-dmps-nju4-syb1
vulnerability_id VCID-dmps-nju4-syb1
summary openshift-origin-broker: default password creation
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0234.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0234.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-0234
reference_id
reference_type
scores
0
value 0.08806
scoring_system epss
scoring_elements 0.92673
published_at 2026-06-04T12:55:00Z
1
value 0.08806
scoring_system epss
scoring_elements 0.92685
published_at 2026-06-05T12:55:00Z
2
value 0.08806
scoring_system epss
scoring_elements 0.92681
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-0234
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1097008
reference_id 1097008
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1097008
fixed_packages
aliases CVE-2014-0234
risk_score 0.1
exploitability 0.5
weighted_severity 0.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dmps-nju4-syb1
10
url VCID-grtg-qzdu-yua1
vulnerability_id VCID-grtg-qzdu-yua1
summary cumin: weak session keys
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2681.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2681.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-2681
reference_id
reference_type
scores
0
value 0.00651
scoring_system epss
scoring_elements 0.71245
published_at 2026-06-04T12:55:00Z
1
value 0.00651
scoring_system epss
scoring_elements 0.71289
published_at 2026-06-05T12:55:00Z
2
value 0.00651
scoring_system epss
scoring_elements 0.71296
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-2681
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=827558
reference_id 827558
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=827558
3
reference_url https://access.redhat.com/errata/RHSA-2012:1278
reference_id RHSA-2012:1278
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1278
4
reference_url https://access.redhat.com/errata/RHSA-2012:1281
reference_id RHSA-2012:1281
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1281
fixed_packages
aliases CVE-2012-2681
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-grtg-qzdu-yua1
11
url VCID-gxrq-4kmm-uufh
vulnerability_id VCID-gxrq-4kmm-uufh
summary The filesystem authentication (condor_io/condor_auth_fs.cpp) in Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 uses authentication directories even when they have weak permissions, which allows remote attackers to impersonate users by renaming a user's authentication directory.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3492.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-3492.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-3492
reference_id
reference_type
scores
0
value 0.00698
scoring_system epss
scoring_elements 0.72338
published_at 2026-06-04T12:55:00Z
1
value 0.00698
scoring_system epss
scoring_elements 0.72379
published_at 2026-06-05T12:55:00Z
2
value 0.00698
scoring_system epss
scoring_elements 0.72385
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-3492
2
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688210
reference_id 688210
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=688210
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=848218
reference_id 848218
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=848218
4
reference_url https://access.redhat.com/errata/RHSA-2012:1278
reference_id RHSA-2012:1278
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1278
5
reference_url https://access.redhat.com/errata/RHSA-2012:1281
reference_id RHSA-2012:1281
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1281
fixed_packages
aliases CVE-2012-3492
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gxrq-4kmm-uufh
12
url VCID-hx86-64zz-8bds
vulnerability_id VCID-hx86-64zz-8bds
summary 
Jenkins Cross-Site Request Forgery vulnerabilities
Multiple cross-site request forgery (CSRF) vulnerabilities in Jenkins before 1.514, LTS before 1.509.1, and Enterprise 1.466.x before 1.466.14.1 and 1.480.x before 1.480.4.1 allow remote attackers to hijack the authentication of administrators for requests that (1) execute arbitrary code or (2) initiate deployment of binaries to a Maven repository via unspecified vectors.
references
0
reference_url https://access.redhat.com/errata/RHEA-2013:1032
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHEA-2013:1032
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2034.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2034.json
2
reference_url https://access.redhat.com/security/cve/CVE-2013-2034
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/security/cve/CVE-2013-2034
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-2034
reference_id
reference_type
scores
0
value 0.00332
scoring_system epss
scoring_elements 0.56385
published_at 2026-06-06T12:55:00Z
1
value 0.00332
scoring_system epss
scoring_elements 0.56322
published_at 2026-06-04T12:55:00Z
2
value 0.00332
scoring_system epss
scoring_elements 0.56378
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-2034
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=958958
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=958958
5
reference_url https://issues.jenkins-ci.org/browse/SECURITY-63
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://issues.jenkins-ci.org/browse/SECURITY-63
6
reference_url https://issues.jenkins-ci.org/browse/SECURITY-69
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://issues.jenkins-ci.org/browse/SECURITY-69
7
reference_url https://nvd.nist.gov/vuln/detail/CVE-2013-2034
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2013-2034
8
reference_url https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2013-05-02
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2013-05-02
9
reference_url http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2013-05-02.cb
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2013-05-02.cb
10
reference_url https://github.com/advisories/GHSA-fg4r-f9j2-36mw
reference_id GHSA-fg4r-f9j2-36mw
reference_type
scores
url https://github.com/advisories/GHSA-fg4r-f9j2-36mw
fixed_packages
aliases CVE-2013-2034, GHSA-fg4r-f9j2-36mw
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hx86-64zz-8bds
13
url VCID-hxhy-qrkz-fkf5
vulnerability_id VCID-hxhy-qrkz-fkf5
summary Cross-site scripting (XSS) vulnerability in ZeroClipboard.swf and ZeroClipboard10.swf in ZeroClipboard before 1.0.8, as used in em-shorty, RepRapCalculator, Fulcrum, Django, aCMS, and other products, allows remote attackers to inject arbitrary web script or HTML via the id parameter. NOTE: this is might be the same vulnerability as CVE-2013-1463. If so, it is likely that CVE-2013-1463 will be REJECTed.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1808.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-1808.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-1808
reference_id
reference_type
scores
0
value 0.01856
scoring_system epss
scoring_elements 0.83388
published_at 2026-06-04T12:55:00Z
1
value 0.01856
scoring_system epss
scoring_elements 0.83412
published_at 2026-06-05T12:55:00Z
2
value 0.01856
scoring_system epss
scoring_elements 0.83413
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-1808
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1808
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1808
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=918054
reference_id 918054
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=918054
fixed_packages
aliases CVE-2013-1808
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hxhy-qrkz-fkf5
14
url VCID-kdbk-88tu-bkap
vulnerability_id VCID-kdbk-88tu-bkap
summary cumin: authentication bypass flaws
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2680.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2680.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-2680
reference_id
reference_type
scores
0
value 0.006
scoring_system epss
scoring_elements 0.69823
published_at 2026-06-04T12:55:00Z
1
value 0.006
scoring_system epss
scoring_elements 0.69863
published_at 2026-06-05T12:55:00Z
2
value 0.006
scoring_system epss
scoring_elements 0.69871
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-2680
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=829421
reference_id 829421
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=829421
3
reference_url https://access.redhat.com/errata/RHSA-2012:1278
reference_id RHSA-2012:1278
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1278
4
reference_url https://access.redhat.com/errata/RHSA-2012:1281
reference_id RHSA-2012:1281
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1281
fixed_packages
aliases CVE-2012-2680
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kdbk-88tu-bkap
15
url VCID-n46g-cz2r-7yay
vulnerability_id VCID-n46g-cz2r-7yay
summary cumin: CSRF flaw
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2734.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2734.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-2734
reference_id
reference_type
scores
0
value 0.00196
scoring_system epss
scoring_elements 0.41359
published_at 2026-06-04T12:55:00Z
1
value 0.00196
scoring_system epss
scoring_elements 0.41434
published_at 2026-06-05T12:55:00Z
2
value 0.00196
scoring_system epss
scoring_elements 0.41439
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-2734
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=832124
reference_id 832124
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=832124
3
reference_url https://access.redhat.com/errata/RHSA-2012:1278
reference_id RHSA-2012:1278
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1278
4
reference_url https://access.redhat.com/errata/RHSA-2012:1281
reference_id RHSA-2012:1281
reference_type
scores
url https://access.redhat.com/errata/RHSA-2012:1281
fixed_packages
aliases CVE-2012-2734
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n46g-cz2r-7yay
16
url VCID-nfkr-vhvf-j3hz
vulnerability_id VCID-nfkr-vhvf-j3hz
summary mcollective has a default password set at install
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0175.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0175.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-0175
reference_id
reference_type
scores
0
value 0.00483
scoring_system epss
scoring_elements 0.65521
published_at 2026-06-04T12:55:00Z
1
value 0.00483
scoring_system epss
scoring_elements 0.65573
published_at 2026-06-05T12:55:00Z
2
value 0.00483
scoring_system epss
scoring_elements 0.65584
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-0175
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0175
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0175
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1086381
reference_id 1086381
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1086381
fixed_packages
aliases CVE-2014-0175
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nfkr-vhvf-j3hz
17
url VCID-r22q-s15c-t3hx
vulnerability_id VCID-r22q-s15c-t3hx
summary qpid-cpp: crash due to qpid::framing::Buffer::checkAvailable() wraparound
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4459.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4459.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-4459
reference_id
reference_type
scores
0
value 0.01522
scoring_system epss
scoring_elements 0.81588
published_at 2026-06-04T12:55:00Z
1
value 0.01522
scoring_system epss
scoring_elements 0.81617
published_at 2026-06-05T12:55:00Z
2
value 0.01522
scoring_system epss
scoring_elements 0.81619
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-4459
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=861241
reference_id 861241
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=861241
3
reference_url https://access.redhat.com/errata/RHSA-2013:0561
reference_id RHSA-2013:0561
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0561
4
reference_url https://access.redhat.com/errata/RHSA-2013:0562
reference_id RHSA-2013:0562
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0562
fixed_packages
aliases CVE-2012-4459
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-r22q-s15c-t3hx
18
url VCID-ww5y-dfs2-ubef
vulnerability_id VCID-ww5y-dfs2-ubef
summary Enterprise: gears fail to properly isolate network traffic
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3674.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3674.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-3674
reference_id
reference_type
scores
0
value 0.004
scoring_system epss
scoring_elements 0.61032
published_at 2026-06-04T12:55:00Z
1
value 0.004
scoring_system epss
scoring_elements 0.61081
published_at 2026-06-05T12:55:00Z
2
value 0.004
scoring_system epss
scoring_elements 0.61088
published_at 2026-06-06T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-3674
2
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1148170
reference_id 1148170
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1148170
3
reference_url https://access.redhat.com/errata/RHSA-2014:1796
reference_id RHSA-2014:1796
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1796
4
reference_url https://access.redhat.com/errata/RHSA-2014:1906
reference_id RHSA-2014:1906
reference_type
scores
url https://access.redhat.com/errata/RHSA-2014:1906
fixed_packages
aliases CVE-2014-3674
risk_score null
exploitability 0.5
weighted_severity 0.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ww5y-dfs2-ubef
19
url VCID-x2kn-aegv-9ya6
vulnerability_id VCID-x2kn-aegv-9ya6
summary 
openshift-origin-node Improper Input Validation vulnerability
Ruby gem openshift-origin-node before 2014-02-14 does not
contain a cronjob timeout which could result in a denial of
service in cron.daily and cron.weekly.
references
0
reference_url https://access.redhat.com/errata/RHBA-2014:0487
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHBA-2014:0487
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0084.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-0084.json
2
reference_url https://access.redhat.com/security/cve/CVE-2014-0084
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/security/cve/CVE-2014-0084
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2014-0084
reference_id
reference_type
scores
0
value 0.00122
scoring_system epss
scoring_elements 0.30781
published_at 2026-06-04T12:55:00Z
1
value 0.00122
scoring_system epss
scoring_elements 0.3082
published_at 2026-06-06T12:55:00Z
2
value 0.00122
scoring_system epss
scoring_elements 0.30853
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2014-0084
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1065198
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=1065198
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-0084
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3
scoring_elements
1
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
2
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2014-0084
6
reference_url https://github.com/openshift/origin-server
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/openshift/origin-server
7
reference_url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/openshift-origin-node/CVE-2014-0084.yml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://github.com/rubysec/ruby-advisory-db/blob/master/gems/openshift-origin-node/CVE-2014-0084.yml
8
reference_url https://nvd.nist.gov/vuln/detail/CVE-2014-0084
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
1
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2014-0084
9
reference_url https://github.com/advisories/GHSA-756m-3qf2-hp58
reference_id GHSA-756m-3qf2-hp58
reference_type
scores
url https://github.com/advisories/GHSA-756m-3qf2-hp58
fixed_packages
aliases CVE-2014-0084, GHSA-756m-3qf2-hp58
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x2kn-aegv-9ya6
20
url VCID-ypzt-j5gh-ruhz
vulnerability_id VCID-ypzt-j5gh-ruhz
summary 
Improper Authentication
The default configuration for Apache Qpid 0.20 and earlier, when the federation_tag attribute is enabled, accepts AMQP connections without checking the source user ID, which allows remote attackers to bypass authentication and have other unspecified impact via an AMQP request.
references
0
reference_url http://rhn.redhat.com/errata/RHSA-2013-0561.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0561.html
1
reference_url http://rhn.redhat.com/errata/RHSA-2013-0562.html
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://rhn.redhat.com/errata/RHSA-2013-0562.html
2
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4446.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4446.json
3
reference_url https://api.first.org/data/v1/epss?cve=CVE-2012-4446
reference_id
reference_type
scores
0
value 0.00438
scoring_system epss
scoring_elements 0.63476
published_at 2026-06-06T12:55:00Z
1
value 0.00438
scoring_system epss
scoring_elements 0.63426
published_at 2026-06-04T12:55:00Z
2
value 0.00438
scoring_system epss
scoring_elements 0.63469
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2012-4446
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=851355
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=851355
5
reference_url https://issues.apache.org/jira/browse/QPID-4631
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://issues.apache.org/jira/browse/QPID-4631
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2012-4446
reference_id CVE-2012-4446
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2012-4446
7
reference_url https://github.com/advisories/GHSA-mrgh-6x42-x6xf
reference_id GHSA-mrgh-6x42-x6xf
reference_type
scores
url https://github.com/advisories/GHSA-mrgh-6x42-x6xf
8
reference_url https://access.redhat.com/errata/RHSA-2013:0561
reference_id RHSA-2013:0561
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0561
9
reference_url https://access.redhat.com/errata/RHSA-2013:0562
reference_id RHSA-2013:0562
reference_type
scores
url https://access.redhat.com/errata/RHSA-2013:0562
fixed_packages
aliases CVE-2012-4446, GHSA-mrgh-6x42-x6xf
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ypzt-j5gh-ruhz
21
url VCID-z5ed-ujrf-2ka2
vulnerability_id VCID-z5ed-ujrf-2ka2
summary 
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVE-2013-2033 Jenkins: Build Description XSS
references
0
reference_url https://access.redhat.com/errata/RHEA-2013:1032
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/errata/RHEA-2013:1032
1
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2033.json
reference_id
reference_type
scores
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-2033.json
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2013-2033
reference_id
reference_type
scores
0
value 0.00178
scoring_system epss
scoring_elements 0.39139
published_at 2026-06-06T12:55:00Z
1
value 0.00178
scoring_system epss
scoring_elements 0.39046
published_at 2026-06-04T12:55:00Z
2
value 0.00178
scoring_system epss
scoring_elements 0.39134
published_at 2026-06-05T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2013-2033
3
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=958957
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://bugzilla.redhat.com/show_bug.cgi?id=958957
4
reference_url https://exchange.xforce.ibmcloud.com/vulnerabilities/84004
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://exchange.xforce.ibmcloud.com/vulnerabilities/84004
5
reference_url https://issues.jenkins-ci.org/browse/SECURITY-67
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://issues.jenkins-ci.org/browse/SECURITY-67
6
reference_url https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2013-05-02
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2013-05-02
7
reference_url http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2013-05-02.cb
reference_id
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2013-05-02.cb
8
reference_url https://access.redhat.com/security/cve/CVE-2013-2033
reference_id CVE-2013-2033
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://access.redhat.com/security/cve/CVE-2013-2033
9
reference_url https://nvd.nist.gov/vuln/detail/CVE-2013-2033
reference_id CVE-2013-2033
reference_type
scores
0
value MODERATE
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2013-2033
10
reference_url https://github.com/advisories/GHSA-826f-32qm-vm3j
reference_id GHSA-826f-32qm-vm3j
reference_type
scores
url https://github.com/advisories/GHSA-826f-32qm-vm3j
fixed_packages
aliases CVE-2013-2033, GHSA-826f-32qm-vm3j
risk_score 3.1
exploitability 0.5
weighted_severity 6.2
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-z5ed-ujrf-2ka2
Fixing_vulnerabilities
Risk_score3.1
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-rake@0.8.7-2.1%3Farch=el6