Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-xby9-avva-a3e5

Summary

XSS vulnerability
The gem allows attributes that are not specified in the allowlist to be present in sanitized output when input with specially-crafted HTML fragments, and these attributes can lead to an XSS attack on target applications. This issue is similar to CVE-2018-8048 in Loofah.

Aliases

alias	CVE-2018-3741

alias	GHSA-px3r-jm9g-c8w8

Fixed_packages

url	pkg:deb/debian/ruby-rails-html-sanitizer@1.0.4-1?distro=trixie
purl	pkg:deb/debian/ruby-rails-html-sanitizer@1.0.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-rails-html-sanitizer@1.0.4-1%3Fdistro=trixie

url pkg:deb/debian/ruby-rails-html-sanitizer@1.0.4-1

purl pkg:deb/debian/ruby-rails-html-sanitizer@1.0.4-1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-63em-3vdj-j3cu

vulnerability	VCID-782b-usu3-bbhd

vulnerability	VCID-ete9-xwuw-puf8

vulnerability	VCID-wxfr-bs81-augc

vulnerability	VCID-zcs7-hzze-u3a5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-rails-html-sanitizer@1.0.4-1

url	pkg:deb/debian/ruby-rails-html-sanitizer@1.3.0-1?distro=trixie
purl	pkg:deb/debian/ruby-rails-html-sanitizer@1.3.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-rails-html-sanitizer@1.3.0-1%3Fdistro=trixie

url	pkg:deb/debian/ruby-rails-html-sanitizer@1.4.4-1?distro=trixie
purl	pkg:deb/debian/ruby-rails-html-sanitizer@1.4.4-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-rails-html-sanitizer@1.4.4-1%3Fdistro=trixie

url	pkg:deb/debian/ruby-rails-html-sanitizer@1.6.2-1?distro=trixie
purl	pkg:deb/debian/ruby-rails-html-sanitizer@1.6.2-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-rails-html-sanitizer@1.6.2-1%3Fdistro=trixie

url	pkg:deb/debian/ruby-rails-html-sanitizer@1.7.0-1?distro=trixie
purl	pkg:deb/debian/ruby-rails-html-sanitizer@1.7.0-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-rails-html-sanitizer@1.7.0-1%3Fdistro=trixie

url pkg:gem/rails-html-sanitizer@1.0.4

purl pkg:gem/rails-html-sanitizer@1.0.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-63em-3vdj-j3cu

vulnerability	VCID-782b-usu3-bbhd

vulnerability	VCID-apxn-up79-x3ge

vulnerability	VCID-cphr-tdzs-x7ar

vulnerability	VCID-ete9-xwuw-puf8

vulnerability	VCID-rhb1-h2b8-jucb

vulnerability	VCID-rz3c-6h7r-6bam

vulnerability	VCID-ueen-aybd-tqh2

vulnerability	VCID-wxfr-bs81-augc

vulnerability	VCID-zcs7-hzze-u3a5

resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails-html-sanitizer@1.0.4

Affected_packages

url pkg:deb/debian/ruby-rails-html-sanitizer@1.0.3-2

purl pkg:deb/debian/ruby-rails-html-sanitizer@1.0.3-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-63em-3vdj-j3cu

vulnerability	VCID-782b-usu3-bbhd

vulnerability	VCID-ete9-xwuw-puf8

vulnerability	VCID-wxfr-bs81-augc

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zcs7-hzze-u3a5

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ruby-rails-html-sanitizer@1.0.3-2

url pkg:gem/rails-html-sanitizer@1.0.0

purl pkg:gem/rails-html-sanitizer@1.0.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ece-9xu2-z7ea

vulnerability	VCID-327c-vdne-j7ar

vulnerability	VCID-6158-4ade-h7ba

vulnerability	VCID-63em-3vdj-j3cu

vulnerability	VCID-782b-usu3-bbhd

vulnerability	VCID-apxn-up79-x3ge

vulnerability	VCID-cphr-tdzs-x7ar

vulnerability	VCID-ete9-xwuw-puf8

vulnerability	VCID-nc6s-6usd-gkeb

vulnerability	VCID-rhb1-h2b8-jucb

vulnerability	VCID-rz3c-6h7r-6bam

vulnerability	VCID-ueen-aybd-tqh2

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zcs7-hzze-u3a5

resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails-html-sanitizer@1.0.0

url pkg:gem/rails-html-sanitizer@1.0.1

purl pkg:gem/rails-html-sanitizer@1.0.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ece-9xu2-z7ea

vulnerability	VCID-327c-vdne-j7ar

vulnerability	VCID-6158-4ade-h7ba

vulnerability	VCID-63em-3vdj-j3cu

vulnerability	VCID-782b-usu3-bbhd

vulnerability	VCID-apxn-up79-x3ge

vulnerability	VCID-cphr-tdzs-x7ar

vulnerability	VCID-ete9-xwuw-puf8

vulnerability	VCID-nc6s-6usd-gkeb

vulnerability	VCID-rhb1-h2b8-jucb

vulnerability	VCID-rz3c-6h7r-6bam

vulnerability	VCID-ueen-aybd-tqh2

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zcs7-hzze-u3a5

resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails-html-sanitizer@1.0.1

url pkg:gem/rails-html-sanitizer@1.0.2

purl pkg:gem/rails-html-sanitizer@1.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2ece-9xu2-z7ea

vulnerability	VCID-327c-vdne-j7ar

vulnerability	VCID-6158-4ade-h7ba

vulnerability	VCID-63em-3vdj-j3cu

vulnerability	VCID-782b-usu3-bbhd

vulnerability	VCID-an3h-1c9y-f3bp

vulnerability	VCID-apxn-up79-x3ge

vulnerability	VCID-cphr-tdzs-x7ar

vulnerability	VCID-ete9-xwuw-puf8

vulnerability	VCID-nc6s-6usd-gkeb

vulnerability	VCID-rhb1-h2b8-jucb

vulnerability	VCID-rz3c-6h7r-6bam

vulnerability	VCID-ueen-aybd-tqh2

vulnerability	VCID-ujza-s7ug-9fcp

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zcs7-hzze-u3a5

resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails-html-sanitizer@1.0.2

url pkg:gem/rails-html-sanitizer@1.0.3

purl pkg:gem/rails-html-sanitizer@1.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-63em-3vdj-j3cu

vulnerability	VCID-782b-usu3-bbhd

vulnerability	VCID-apxn-up79-x3ge

vulnerability	VCID-cphr-tdzs-x7ar

vulnerability	VCID-ete9-xwuw-puf8

vulnerability	VCID-rhb1-h2b8-jucb

vulnerability	VCID-rz3c-6h7r-6bam

vulnerability	VCID-ueen-aybd-tqh2

vulnerability	VCID-wxfr-bs81-augc

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zcs7-hzze-u3a5

resource_url http://public2.vulnerablecode.io/packages/pkg:gem/rails-html-sanitizer@1.0.3

url pkg:rpm/redhat/ansible-runner@1.1.2-2?arch=el7ar

purl pkg:rpm/redhat/ansible-runner@1.1.2-2?arch=el7ar

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-runner@1.1.2-2%3Farch=el7ar

url pkg:rpm/redhat/ansible-tower@3.3.3-1?arch=el7at

purl pkg:rpm/redhat/ansible-tower@3.3.3-1?arch=el7at

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ansible-tower@3.3.3-1%3Farch=el7at

url pkg:rpm/redhat/bubblewrap@0.1.7-1?arch=el7

purl pkg:rpm/redhat/bubblewrap@0.1.7-1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-65ha-wgr4-eqd4

vulnerability	VCID-dysm-mxnw-xfgu

vulnerability	VCID-rqh3-c53s-vuee

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-z5na-uzmt-x3gr

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/bubblewrap@0.1.7-1%3Farch=el7

url pkg:rpm/redhat/cfme@5.10.0.33-1?arch=el7cf

purl pkg:rpm/redhat/cfme@5.10.0.33-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/cfme@5.10.0.33-1%3Farch=el7cf

url pkg:rpm/redhat/cfme-amazon-smartstate@5.10.0.33-1?arch=el7cf

purl pkg:rpm/redhat/cfme-amazon-smartstate@5.10.0.33-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/cfme-amazon-smartstate@5.10.0.33-1%3Farch=el7cf

url pkg:rpm/redhat/cfme-appliance@5.10.0.33-1?arch=el7cf

purl pkg:rpm/redhat/cfme-appliance@5.10.0.33-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/cfme-appliance@5.10.0.33-1%3Farch=el7cf

url pkg:rpm/redhat/cfme-gemset@5.10.0.33-1?arch=el7cf

purl pkg:rpm/redhat/cfme-gemset@5.10.0.33-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/cfme-gemset@5.10.0.33-1%3Farch=el7cf

url pkg:rpm/redhat/dbus-api-service@1.0.1-5?arch=el7cf

purl pkg:rpm/redhat/dbus-api-service@1.0.1-5?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/dbus-api-service@1.0.1-5%3Farch=el7cf

url pkg:rpm/redhat/dumb-init@1.2.0-1?arch=el7cf

purl pkg:rpm/redhat/dumb-init@1.2.0-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/dumb-init@1.2.0-1%3Farch=el7cf

url pkg:rpm/redhat/erlang@19.3.6.7-1?arch=el7at

purl pkg:rpm/redhat/erlang@19.3.6.7-1?arch=el7at

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/erlang@19.3.6.7-1%3Farch=el7at

url pkg:rpm/redhat/google-compute-engine@2.0.0-2?arch=el7cf

purl pkg:rpm/redhat/google-compute-engine@2.0.0-2?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/google-compute-engine@2.0.0-2%3Farch=el7cf

url pkg:rpm/redhat/google-config@2.0.0-2?arch=el7cf

purl pkg:rpm/redhat/google-config@2.0.0-2?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/google-config@2.0.0-2%3Farch=el7cf

url pkg:rpm/redhat/httpd-configmap-generator@0.2.2-2?arch=el7cf

purl pkg:rpm/redhat/httpd-configmap-generator@0.2.2-2?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/httpd-configmap-generator@0.2.2-2%3Farch=el7cf

url pkg:rpm/redhat/nginx@1:1.10.2-1?arch=el7at

purl pkg:rpm/redhat/nginx@1:1.10.2-1?arch=el7at

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-65ha-wgr4-eqd4

vulnerability	VCID-dysm-mxnw-xfgu

vulnerability	VCID-rqh3-c53s-vuee

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-z5na-uzmt-x3gr

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/nginx@1:1.10.2-1%3Farch=el7at

url pkg:rpm/redhat/ovirt-ansible-cluster-upgrade@1.1.8-1?arch=el7ev

purl pkg:rpm/redhat/ovirt-ansible-cluster-upgrade@1.1.8-1?arch=el7ev

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ovirt-ansible-cluster-upgrade@1.1.8-1%3Farch=el7ev

url pkg:rpm/redhat/ovirt-ansible-disaster-recovery@1.1.2-1?arch=el7ev

purl pkg:rpm/redhat/ovirt-ansible-disaster-recovery@1.1.2-1?arch=el7ev

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ovirt-ansible-disaster-recovery@1.1.2-1%3Farch=el7ev

url pkg:rpm/redhat/ovirt-ansible-engine-setup@1.1.5-1?arch=el7ev

purl pkg:rpm/redhat/ovirt-ansible-engine-setup@1.1.5-1?arch=el7ev

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ovirt-ansible-engine-setup@1.1.5-1%3Farch=el7ev

url pkg:rpm/redhat/ovirt-ansible-image-template@1.1.8-1?arch=el7ev

purl pkg:rpm/redhat/ovirt-ansible-image-template@1.1.8-1?arch=el7ev

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ovirt-ansible-image-template@1.1.8-1%3Farch=el7ev

url pkg:rpm/redhat/ovirt-ansible-infra@1.1.8-1?arch=el7ev

purl pkg:rpm/redhat/ovirt-ansible-infra@1.1.8-1?arch=el7ev

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ovirt-ansible-infra@1.1.8-1%3Farch=el7ev

url pkg:rpm/redhat/ovirt-ansible-manageiq@1.1.12-1?arch=el7ev

purl pkg:rpm/redhat/ovirt-ansible-manageiq@1.1.12-1?arch=el7ev

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ovirt-ansible-manageiq@1.1.12-1%3Farch=el7ev

url pkg:rpm/redhat/ovirt-ansible-repositories@1.1.2-1?arch=el7ev

purl pkg:rpm/redhat/ovirt-ansible-repositories@1.1.2-1?arch=el7ev

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ovirt-ansible-repositories@1.1.2-1%3Farch=el7ev

url pkg:rpm/redhat/ovirt-ansible-roles@1.1.5-1?arch=el7ev

purl pkg:rpm/redhat/ovirt-ansible-roles@1.1.5-1?arch=el7ev

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ovirt-ansible-roles@1.1.5-1%3Farch=el7ev

url pkg:rpm/redhat/ovirt-ansible-shutdown-env@1.0.0-1?arch=el7ev

purl pkg:rpm/redhat/ovirt-ansible-shutdown-env@1.0.0-1?arch=el7ev

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ovirt-ansible-shutdown-env@1.0.0-1%3Farch=el7ev

url pkg:rpm/redhat/ovirt-ansible-v2v-conversion-host@1.6.3-1?arch=el7ev

purl pkg:rpm/redhat/ovirt-ansible-v2v-conversion-host@1.6.3-1?arch=el7ev

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ovirt-ansible-v2v-conversion-host@1.6.3-1%3Farch=el7ev

url pkg:rpm/redhat/ovirt-ansible-vm-infra@1.1.10-1?arch=el7ev

purl pkg:rpm/redhat/ovirt-ansible-vm-infra@1.1.10-1?arch=el7ev

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ovirt-ansible-vm-infra@1.1.10-1%3Farch=el7ev

url pkg:rpm/redhat/postgresql96@9.6.10-1PGDG?arch=el7at

purl pkg:rpm/redhat/postgresql96@9.6.10-1PGDG?arch=el7at

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-7xfn-1fv3-1bgv

vulnerability	VCID-ne9g-k8fz-dkgb

vulnerability	VCID-sq2s-cvrs-7uhh

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-wcsh-zz5q-qqbf

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/postgresql96@9.6.10-1PGDG%3Farch=el7at

url pkg:rpm/redhat/prince@9.0r2-10?arch=el7cf

purl pkg:rpm/redhat/prince@9.0r2-10?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2c39-ngdz-6khz

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-65ha-wgr4-eqd4

vulnerability	VCID-dysm-mxnw-xfgu

vulnerability	VCID-rqh3-c53s-vuee

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-teyt-6844-wyad

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-z5na-uzmt-x3gr

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/prince@9.0r2-10%3Farch=el7cf

url pkg:rpm/redhat/pyOpenSSL@17.3.0-4?arch=el7ost

purl pkg:rpm/redhat/pyOpenSSL@17.3.0-4?arch=el7ost

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/pyOpenSSL@17.3.0-4%3Farch=el7ost

url pkg:rpm/redhat/python-bambou@3.0.1-2?arch=el7cf

purl pkg:rpm/redhat/python-bambou@3.0.1-2?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-bambou@3.0.1-2%3Farch=el7cf

url pkg:rpm/redhat/python-colorama@0.3.7-2?arch=el7ost

purl pkg:rpm/redhat/python-colorama@0.3.7-2?arch=el7ost

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-colorama@0.3.7-2%3Farch=el7ost

url pkg:rpm/redhat/python-crypto@2.6.1-16?arch=el7at

purl pkg:rpm/redhat/python-crypto@2.6.1-16?arch=el7at

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-65ha-wgr4-eqd4

vulnerability	VCID-rqh3-c53s-vuee

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-su5f-8nxh-6fdq

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-crypto@2.6.1-16%3Farch=el7at

url pkg:rpm/redhat/python-daemon@2.1.2-7?arch=el7at

purl pkg:rpm/redhat/python-daemon@2.1.2-7?arch=el7at

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hff-pbpa-p3e5

vulnerability	VCID-1xgz-hwng-n3eq

vulnerability	VCID-2g54-3acq-pbha

vulnerability	VCID-31xv-z8c6-a7bg

vulnerability	VCID-3af2-c1m7-3kdr

vulnerability	VCID-3t8t-yt9b-1fce

vulnerability	VCID-3wa1-khqf-x7fv

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-63rx-372a-ukby

vulnerability	VCID-6fxc-s6ht-x7ht

vulnerability	VCID-6wxf-ewtr-z3hb

vulnerability	VCID-7v7q-8wa6-hff5

vulnerability	VCID-895a-ydc5-zfg6

vulnerability	VCID-8zkw-y3yd-yuft

vulnerability	VCID-9qdt-7p83-4yd8

vulnerability	VCID-9wej-f7zx-pfeq

vulnerability	VCID-a5sk-5grx-eyaf

vulnerability	VCID-a6sp-18av-wya6

vulnerability	VCID-afkn-k8yk-w3dr

vulnerability	VCID-bhq3-j6aj-1yae

vulnerability	VCID-bsbd-bsbq-7qdk

vulnerability	VCID-bydt-bkf4-rbh2

vulnerability	VCID-d4z1-hdkt-r7g1

vulnerability	VCID-es1t-7196-4kbb

vulnerability	VCID-hmcs-7s53-mbft

vulnerability	VCID-jvp6-892x-nkc7

vulnerability	VCID-mnkw-23eu-bkgc

vulnerability	VCID-mv26-fzn6-vycf

vulnerability	VCID-nhvk-z1d5-huce

vulnerability	VCID-nmya-eyxd-9ybe

vulnerability	VCID-nugh-hm1r-73c7

vulnerability	VCID-pnt3-1ssq-tqau

vulnerability	VCID-q4x5-bxn7-5yht

vulnerability	VCID-qjez-qe32-e3b6

vulnerability	VCID-r7tw-km29-4bdp

vulnerability	VCID-ruae-hqdg-m7ek

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-sw69-1r7d-kkht

vulnerability	VCID-t684-yp58-hkg8

vulnerability	VCID-u29q-3x9x-73da

vulnerability	VCID-ugqt-zyga-1ydy

vulnerability	VCID-utte-4yve-n7eq

vulnerability	VCID-uygc-h93v-vuh8

vulnerability	VCID-v61q-45uv-uuf7

vulnerability	VCID-v9mt-t1pb-hybk

vulnerability	VCID-vhdm-w6p1-uuh9

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-xnyb-nuwm-pkdr

vulnerability	VCID-xnz5-gv2x-17bk

vulnerability	VCID-yw62-qbkq-9ygq

vulnerability	VCID-z6er-42pm-7ubq

vulnerability	VCID-ze79-6kcg-nfcp

vulnerability	VCID-zrsc-vqxk-vkgx

vulnerability	VCID-zx5n-czhy-6qgu

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-daemon@2.1.2-7%3Farch=el7at

url pkg:rpm/redhat/python-funcsigs@1.0.2-1?arch=el7ost

purl pkg:rpm/redhat/python-funcsigs@1.0.2-1?arch=el7ost

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-funcsigs@1.0.2-1%3Farch=el7ost

url pkg:rpm/redhat/python-future@0.16.0-1?arch=el7cf

purl pkg:rpm/redhat/python-future@0.16.0-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-future@0.16.0-1%3Farch=el7cf

url pkg:rpm/redhat/python-lockfile@1:0.11.0-10?arch=el7at

purl pkg:rpm/redhat/python-lockfile@1:0.11.0-10?arch=el7at

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-lockfile@1:0.11.0-10%3Farch=el7at

url pkg:rpm/redhat/python-meld3@0.6.10-1?arch=el7

purl pkg:rpm/redhat/python-meld3@0.6.10-1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-65ha-wgr4-eqd4

vulnerability	VCID-dysm-mxnw-xfgu

vulnerability	VCID-rqh3-c53s-vuee

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-z5na-uzmt-x3gr

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-meld3@0.6.10-1%3Farch=el7

url pkg:rpm/redhat/python-mock@2.0.0-1?arch=el7ost

purl pkg:rpm/redhat/python-mock@2.0.0-1?arch=el7ost

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-mock@2.0.0-1%3Farch=el7ost

url pkg:rpm/redhat/python-pbr@3.1.1-2?arch=el7ost

purl pkg:rpm/redhat/python-pbr@3.1.1-2?arch=el7ost

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-pbr@3.1.1-2%3Farch=el7ost

url pkg:rpm/redhat/python-pexpect@4.6-1?arch=el7at

purl pkg:rpm/redhat/python-pexpect@4.6-1?arch=el7at

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hff-pbpa-p3e5

vulnerability	VCID-1xgz-hwng-n3eq

vulnerability	VCID-2g54-3acq-pbha

vulnerability	VCID-31xv-z8c6-a7bg

vulnerability	VCID-3af2-c1m7-3kdr

vulnerability	VCID-3t8t-yt9b-1fce

vulnerability	VCID-3wa1-khqf-x7fv

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-63rx-372a-ukby

vulnerability	VCID-6fxc-s6ht-x7ht

vulnerability	VCID-6wxf-ewtr-z3hb

vulnerability	VCID-7v7q-8wa6-hff5

vulnerability	VCID-895a-ydc5-zfg6

vulnerability	VCID-8zkw-y3yd-yuft

vulnerability	VCID-9qdt-7p83-4yd8

vulnerability	VCID-9wej-f7zx-pfeq

vulnerability	VCID-a5sk-5grx-eyaf

vulnerability	VCID-a6sp-18av-wya6

vulnerability	VCID-afkn-k8yk-w3dr

vulnerability	VCID-bhq3-j6aj-1yae

vulnerability	VCID-bsbd-bsbq-7qdk

vulnerability	VCID-bydt-bkf4-rbh2

vulnerability	VCID-d4z1-hdkt-r7g1

vulnerability	VCID-es1t-7196-4kbb

vulnerability	VCID-hmcs-7s53-mbft

vulnerability	VCID-jvp6-892x-nkc7

vulnerability	VCID-mnkw-23eu-bkgc

vulnerability	VCID-mv26-fzn6-vycf

vulnerability	VCID-nhvk-z1d5-huce

vulnerability	VCID-nmya-eyxd-9ybe

vulnerability	VCID-nugh-hm1r-73c7

vulnerability	VCID-pnt3-1ssq-tqau

vulnerability	VCID-q4x5-bxn7-5yht

vulnerability	VCID-qjez-qe32-e3b6

vulnerability	VCID-r7tw-km29-4bdp

vulnerability	VCID-ruae-hqdg-m7ek

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-sw69-1r7d-kkht

vulnerability	VCID-t684-yp58-hkg8

vulnerability	VCID-u29q-3x9x-73da

vulnerability	VCID-ugqt-zyga-1ydy

vulnerability	VCID-utte-4yve-n7eq

vulnerability	VCID-uygc-h93v-vuh8

vulnerability	VCID-v61q-45uv-uuf7

vulnerability	VCID-v9mt-t1pb-hybk

vulnerability	VCID-vhdm-w6p1-uuh9

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-xnyb-nuwm-pkdr

vulnerability	VCID-xnz5-gv2x-17bk

vulnerability	VCID-yw62-qbkq-9ygq

vulnerability	VCID-z6er-42pm-7ubq

vulnerability	VCID-ze79-6kcg-nfcp

vulnerability	VCID-zrsc-vqxk-vkgx

vulnerability	VCID-zx5n-czhy-6qgu

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-pexpect@4.6-1%3Farch=el7at

url pkg:rpm/redhat/python-psutil@5.4.3-2?arch=el7at

purl pkg:rpm/redhat/python-psutil@5.4.3-2?arch=el7at

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-psutil@5.4.3-2%3Farch=el7at

url pkg:rpm/redhat/python-ptyprocess@0.5.2-3?arch=el7at

purl pkg:rpm/redhat/python-ptyprocess@0.5.2-3?arch=el7at

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1hff-pbpa-p3e5

vulnerability	VCID-1xgz-hwng-n3eq

vulnerability	VCID-2g54-3acq-pbha

vulnerability	VCID-31xv-z8c6-a7bg

vulnerability	VCID-3af2-c1m7-3kdr

vulnerability	VCID-3t8t-yt9b-1fce

vulnerability	VCID-3wa1-khqf-x7fv

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-63rx-372a-ukby

vulnerability	VCID-6fxc-s6ht-x7ht

vulnerability	VCID-6wxf-ewtr-z3hb

vulnerability	VCID-7v7q-8wa6-hff5

vulnerability	VCID-895a-ydc5-zfg6

vulnerability	VCID-8zkw-y3yd-yuft

vulnerability	VCID-9qdt-7p83-4yd8

vulnerability	VCID-9wej-f7zx-pfeq

vulnerability	VCID-a5sk-5grx-eyaf

vulnerability	VCID-a6sp-18av-wya6

vulnerability	VCID-afkn-k8yk-w3dr

vulnerability	VCID-bhq3-j6aj-1yae

vulnerability	VCID-bsbd-bsbq-7qdk

vulnerability	VCID-bydt-bkf4-rbh2

vulnerability	VCID-d4z1-hdkt-r7g1

vulnerability	VCID-es1t-7196-4kbb

vulnerability	VCID-hmcs-7s53-mbft

vulnerability	VCID-jvp6-892x-nkc7

vulnerability	VCID-mnkw-23eu-bkgc

vulnerability	VCID-mv26-fzn6-vycf

vulnerability	VCID-nhvk-z1d5-huce

vulnerability	VCID-nmya-eyxd-9ybe

vulnerability	VCID-nugh-hm1r-73c7

vulnerability	VCID-pnt3-1ssq-tqau

vulnerability	VCID-q4x5-bxn7-5yht

vulnerability	VCID-qjez-qe32-e3b6

vulnerability	VCID-r7tw-km29-4bdp

vulnerability	VCID-ruae-hqdg-m7ek

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-sw69-1r7d-kkht

vulnerability	VCID-t684-yp58-hkg8

vulnerability	VCID-u29q-3x9x-73da

vulnerability	VCID-ugqt-zyga-1ydy

vulnerability	VCID-utte-4yve-n7eq

vulnerability	VCID-uygc-h93v-vuh8

vulnerability	VCID-v61q-45uv-uuf7

vulnerability	VCID-v9mt-t1pb-hybk

vulnerability	VCID-vhdm-w6p1-uuh9

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-xnyb-nuwm-pkdr

vulnerability	VCID-xnz5-gv2x-17bk

vulnerability	VCID-yw62-qbkq-9ygq

vulnerability	VCID-z6er-42pm-7ubq

vulnerability	VCID-ze79-6kcg-nfcp

vulnerability	VCID-zrsc-vqxk-vkgx

vulnerability	VCID-zx5n-czhy-6qgu

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-ptyprocess@0.5.2-3%3Farch=el7at

url pkg:rpm/redhat/python-pylxca@2.1.1-2?arch=el7cf

purl pkg:rpm/redhat/python-pylxca@2.1.1-2?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-pylxca@2.1.1-2%3Farch=el7cf

url pkg:rpm/redhat/python-pysocks@1.5.6-3?arch=el7ost

purl pkg:rpm/redhat/python-pysocks@1.5.6-3?arch=el7ost

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-pysocks@1.5.6-3%3Farch=el7ost

url pkg:rpm/redhat/python-requests@2.14.2-1?arch=el7ost

purl pkg:rpm/redhat/python-requests@2.14.2-1?arch=el7ost

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-requests@2.14.2-1%3Farch=el7ost

url pkg:rpm/redhat/python-requests-toolbelt@0.8.0-2?arch=el7cf

purl pkg:rpm/redhat/python-requests-toolbelt@0.8.0-2?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-requests-toolbelt@0.8.0-2%3Farch=el7cf

url pkg:rpm/redhat/python-tabulate@0.8.2-1?arch=el7cf

purl pkg:rpm/redhat/python-tabulate@0.8.2-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-tabulate@0.8.2-1%3Farch=el7cf

url pkg:rpm/redhat/python-urllib3@1.21.1-1.2?arch=el7ost

purl pkg:rpm/redhat/python-urllib3@1.21.1-1.2?arch=el7ost

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-urllib3@1.21.1-1.2%3Farch=el7ost

url pkg:rpm/redhat/python-vspk@5.3.2-2?arch=el7cf

purl pkg:rpm/redhat/python-vspk@5.3.2-2?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/python-vspk@5.3.2-2%3Farch=el7cf

url pkg:rpm/redhat/qpid-proton@0.19.0-1?arch=el7cf

purl pkg:rpm/redhat/qpid-proton@0.19.0-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-65ha-wgr4-eqd4

vulnerability	VCID-rqh3-c53s-vuee

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/qpid-proton@0.19.0-1%3Farch=el7cf

url pkg:rpm/redhat/rabbitmq-server@3.7.4-1?arch=el7at

purl pkg:rpm/redhat/rabbitmq-server@3.7.4-1?arch=el7at

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rabbitmq-server@3.7.4-1%3Farch=el7at

url pkg:rpm/redhat/rh-postgresql95-postgresql-pglogical@2.1.0-4?arch=el7cf

purl pkg:rpm/redhat/rh-postgresql95-postgresql-pglogical@2.1.0-4?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-q4bk-1qay-ffbh

vulnerability	VCID-s6cp-dk5r-v3aw

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-postgresql95-postgresql-pglogical@2.1.0-4%3Farch=el7cf

url pkg:rpm/redhat/rh-postgresql95-repmgr@4.0.6-2?arch=el7cf

purl pkg:rpm/redhat/rh-postgresql95-repmgr@4.0.6-2?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-postgresql95-repmgr@4.0.6-2%3Farch=el7cf

url pkg:rpm/redhat/ruby@2.4.5-90?arch=el7cf

purl pkg:rpm/redhat/ruby@2.4.5-90?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/ruby@2.4.5-90%3Farch=el7cf

url pkg:rpm/redhat/rubygem-bcrypt@3.1.12-1?arch=el7cf

purl pkg:rpm/redhat/rubygem-bcrypt@3.1.12-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-bcrypt@3.1.12-1%3Farch=el7cf

url pkg:rpm/redhat/rubygem-ffi@1.9.25-1?arch=el7cf

purl pkg:rpm/redhat/rubygem-ffi@1.9.25-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-ffi@1.9.25-1%3Farch=el7cf

url pkg:rpm/redhat/rubygem-hamlit@2.8.8-1?arch=el7cf

purl pkg:rpm/redhat/rubygem-hamlit@2.8.8-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-hamlit@2.8.8-1%3Farch=el7cf

url pkg:rpm/redhat/rubygem-http_parser.rb@0.6.0-1?arch=el7cf

purl pkg:rpm/redhat/rubygem-http_parser.rb@0.6.0-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-http_parser.rb@0.6.0-1%3Farch=el7cf

url pkg:rpm/redhat/rubygem-json@2.1.0-1?arch=el7cf

purl pkg:rpm/redhat/rubygem-json@2.1.0-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-json@2.1.0-1%3Farch=el7cf

url pkg:rpm/redhat/rubygem-linux_block_device@0.2.1-1?arch=el7cf

purl pkg:rpm/redhat/rubygem-linux_block_device@0.2.1-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-linux_block_device@0.2.1-1%3Farch=el7cf

url pkg:rpm/redhat/rubygem-memory_buffer@0.1.0-2?arch=el7cf

purl pkg:rpm/redhat/rubygem-memory_buffer@0.1.0-2?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-memory_buffer@0.1.0-2%3Farch=el7cf

url pkg:rpm/redhat/rubygem-nio4r@2.3.1-1?arch=el7cf

purl pkg:rpm/redhat/rubygem-nio4r@2.3.1-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-nio4r@2.3.1-1%3Farch=el7cf

url pkg:rpm/redhat/rubygem-nokogiri@1.8.2-1?arch=el7cf

purl pkg:rpm/redhat/rubygem-nokogiri@1.8.2-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-nokogiri@1.8.2-1%3Farch=el7cf

url pkg:rpm/redhat/rubygem-ovirt-engine-sdk4@4.2.4-1?arch=el7cf

purl pkg:rpm/redhat/rubygem-ovirt-engine-sdk4@4.2.4-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-ovirt-engine-sdk4@4.2.4-1%3Farch=el7cf

url pkg:rpm/redhat/rubygem-pg@0.18.4-2?arch=el7cf

purl pkg:rpm/redhat/rubygem-pg@0.18.4-2?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-pg@0.18.4-2%3Farch=el7cf

url pkg:rpm/redhat/rubygem-puma@3.7.1-1?arch=el7cf

purl pkg:rpm/redhat/rubygem-puma@3.7.1-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-puma@3.7.1-1%3Farch=el7cf

url pkg:rpm/redhat/rubygem-qpid_proton@0.22.0-2?arch=el7cf

purl pkg:rpm/redhat/rubygem-qpid_proton@0.22.0-2?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-qpid_proton@0.22.0-2%3Farch=el7cf

url pkg:rpm/redhat/rubygem-redhat_access_cfme@2.0.3-1?arch=el7cf

purl pkg:rpm/redhat/rubygem-redhat_access_cfme@2.0.3-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-redhat_access_cfme@2.0.3-1%3Farch=el7cf

url pkg:rpm/redhat/rubygem-redhat_access_lib@1.1.4-2?arch=el7cf

purl pkg:rpm/redhat/rubygem-redhat_access_lib@1.1.4-2?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-redhat_access_lib@1.1.4-2%3Farch=el7cf

url pkg:rpm/redhat/rubygem-rugged@0.27.4-1?arch=el7cf

purl pkg:rpm/redhat/rubygem-rugged@0.27.4-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-rugged@0.27.4-1%3Farch=el7cf

url pkg:rpm/redhat/rubygem-sqlite3@1.3.13-2?arch=el7cf

purl pkg:rpm/redhat/rubygem-sqlite3@1.3.13-2?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-sqlite3@1.3.13-2%3Farch=el7cf

url pkg:rpm/redhat/rubygem-unf_ext@0.0.7.5-1?arch=el7cf

purl pkg:rpm/redhat/rubygem-unf_ext@0.0.7.5-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-unf_ext@0.0.7.5-1%3Farch=el7cf

url pkg:rpm/redhat/rubygem-websocket-driver@0.6.5-1?arch=el7cf

purl pkg:rpm/redhat/rubygem-websocket-driver@0.6.5-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rubygem-websocket-driver@0.6.5-1%3Farch=el7cf

url pkg:rpm/redhat/smem@1.4-1?arch=el7cf

purl pkg:rpm/redhat/smem@1.4-1?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-65ha-wgr4-eqd4

vulnerability	VCID-dysm-mxnw-xfgu

vulnerability	VCID-rqh3-c53s-vuee

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-teyt-6844-wyad

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-z5na-uzmt-x3gr

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/smem@1.4-1%3Farch=el7cf

url pkg:rpm/redhat/supervisor@3.1.4-1?arch=el7

purl pkg:rpm/redhat/supervisor@3.1.4-1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-65ha-wgr4-eqd4

vulnerability	VCID-a11q-3bvq-a3e3

vulnerability	VCID-e25e-yb1v-qqcw

vulnerability	VCID-rqh3-c53s-vuee

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/supervisor@3.1.4-1%3Farch=el7

url pkg:rpm/redhat/wmi@1.3.14-7?arch=el7cf

purl pkg:rpm/redhat/wmi@1.3.14-7?arch=el7cf

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-65ha-wgr4-eqd4

vulnerability	VCID-dysm-mxnw-xfgu

vulnerability	VCID-rqh3-c53s-vuee

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-z5na-uzmt-x3gr

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/wmi@1.3.14-7%3Farch=el7cf

url pkg:rpm/redhat/wxGTK3@3.0.3-5?arch=el7at

purl pkg:rpm/redhat/wxGTK3@3.0.3-5?arch=el7at

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-5dmr-8tvd-8uen

vulnerability	VCID-sqa5-8yrd-qyfz

vulnerability	VCID-xby9-avva-a3e5

vulnerability	VCID-zrsc-vqxk-vkgx

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/wxGTK3@3.0.3-5%3Farch=el7at

References

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-3741.json

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-3741.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-3741

reference_id

reference_type

scores

value	0.00129
scoring_system	epss
scoring_elements	0.32284
published_at	2026-04-13T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.32257
published_at	2026-04-01T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.32408
published_at	2026-04-02T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.32444
published_at	2026-04-04T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.32271
published_at	2026-04-07T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.3232
published_at	2026-04-08T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.32349
published_at	2026-04-09T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.3235
published_at	2026-04-11T12:55:00Z

value	0.00129
scoring_system	epss
scoring_elements	0.32312
published_at	2026-04-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-3741

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3741
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-3741

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/rails/rails-html-sanitizer

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/rails/rails-html-sanitizer

reference_url

https://github.com/rails/rails-html-sanitizer/commit/f3ba1a839a35f2ba7f941c15e239a1cb379d56ae

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/rails/rails-html-sanitizer/commit/f3ba1a839a35f2ba7f941c15e239a1cb379d56ae

reference_url

https://groups.google.com/d/msg/rubyonrails-security/tP7W3kLc5u4/uDy2Br7xBgAJ

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3
scoring_elements

url

https://groups.google.com/d/msg/rubyonrails-security/tP7W3kLc5u4/uDy2Br7xBgAJ

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2018-3741

reference_id

reference_type

scores

value	6.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2018-3741

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1568842
reference_id	1568842
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1568842

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=893994
reference_id	893994
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=893994

reference_url

https://github.com/advisories/GHSA-px3r-jm9g-c8w8

reference_id

GHSA-px3r-jm9g-c8w8

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-px3r-jm9g-c8w8

Weaknesses

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

cwe_id	79
name	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
description	The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

Exploits

Severity_range_score 4.0 - 6.9

Exploitability 0.5

Weighted_severity 6.2

Risk_score 3.1

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xby9-avva-a3e5

Vulnerability Instance