VulnerableCode Vulnerability Details - VCID-b79j-puq4-zbe8

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-b79j-puq4-zbe8

Essentials
Severities (14)
References (15)
Severity details (12)
Exploits (0)
EPSS
History (1)

Vulnerability ID	VCID-b79j-puq4-zbe8
Aliases	CVE-2013-1812 GHSA-6c8p-qphv-668v
Summary	A vulnerability in Ruby OpenID may lead to Denial of Service.
Status	Published
Exploitability	0.5
Weighted Severity	6.2
Risk	3.1
Affected and Fixed Packages	Package Details

Weaknesses (3)

CWE-1035	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-399	Resource Management Errors
CWE-937	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities

System	Score	Found at
generic_textual	MODERATE	http://lists.fedoraproject.org/pipermail/package-announce/2013-November/120204.html
generic_textual	MODERATE	http://lists.fedoraproject.org/pipermail/package-announce/2013-November/120361.html
epss	0.00531	https://api.first.org/data/v1/epss?cve=CVE-2013-1812
epss	0.00531	https://api.first.org/data/v1/epss?cve=CVE-2013-1812
generic_textual	MODERATE	https://bugzilla.redhat.com/show_bug.cgi?id=918134
cvssv3.1_qr	MODERATE	https://github.com/advisories/GHSA-6c8p-qphv-668v
generic_textual	MODERATE	https://github.com/advisories/GHSA-6c8p-qphv-668v
generic_textual	MODERATE	https://github.com/openid/ruby-openid
generic_textual	MODERATE	https://github.com/openid/ruby-openid/blob/master/CHANGELOG.md
generic_textual	MODERATE	https://github.com/openid/ruby-openid/commit/a3693cef06049563f5b4e4824f4d3211288508ed
generic_textual	MODERATE	https://github.com/openid/ruby-openid/pull/43
generic_textual	MODERATE	https://github.com/rubysec/ruby-advisory-db/blob/master/gems/ruby-openid/CVE-2013-1812.yml
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2013-1812
generic_textual	MODERATE	http://www.openwall.com/lists/oss-security/2013/03/03/8

Reference id	Reference type	URL
		http://lists.fedoraproject.org/pipermail/package-announce/2013-November/120204.html
		http://lists.fedoraproject.org/pipermail/package-announce/2013-November/120361.html
		https://api.first.org/data/v1/epss?cve=CVE-2013-1812
		https://bugzilla.redhat.com/show_bug.cgi?id=918134
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1812
		https://github.com/openid/ruby-openid
		https://github.com/openid/ruby-openid/blob/master/CHANGELOG.md
		https://github.com/openid/ruby-openid/commit/a3693cef06049563f5b4e4824f4d3211288508ed
		https://github.com/openid/ruby-openid/pull/43
		http://www.openwall.com/lists/oss-security/2013/03/03/8
702217		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702217
CVE-2013-1812		https://nvd.nist.gov/vuln/detail/CVE-2013-1812
CVE-2013-1812.YML		https://github.com/rubysec/ruby-advisory-db/blob/master/gems/ruby-openid/CVE-2013-1812.yml
GHSA-6c8p-qphv-668v		https://github.com/advisories/GHSA-6c8p-qphv-668v
GLSA-201405-14		https://security.gentoo.org/glsa/201405-14

No exploits are available.

Exploit Prediction Scoring System (EPSS)

Percentile	0.67695
EPSS Score	0.00531
Published At	June 11, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-11T17:53:48.198770+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/201405-14	38.6.0