VulnerableCode Vulnerability Details

Search for vulnerabilities

System	Score	Found at
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2011-1004
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2011-1004
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2011-1004
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2011-1004
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2011-1004
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2011-1004
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2011-1004
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2011-1004
epss	0.00044	https://api.first.org/data/v1/epss?cve=CVE-2011-1004
cvssv2	6.3	https://nvd.nist.gov/vuln/detail/CVE-2011-1004

System

Score

Found at

epss

0.00044

https://api.first.org/data/v1/epss?cve=CVE-2011-1004

epss

0.00044

https://api.first.org/data/v1/epss?cve=CVE-2011-1004

epss

0.00044

https://api.first.org/data/v1/epss?cve=CVE-2011-1004

epss

0.00044

https://api.first.org/data/v1/epss?cve=CVE-2011-1004

epss

0.00044

https://api.first.org/data/v1/epss?cve=CVE-2011-1004

epss

0.00044

https://api.first.org/data/v1/epss?cve=CVE-2011-1004

epss

0.00044

https://api.first.org/data/v1/epss?cve=CVE-2011-1004

epss

0.00044

https://api.first.org/data/v1/epss?cve=CVE-2011-1004

epss

0.00044

https://api.first.org/data/v1/epss?cve=CVE-2011-1004

cvssv2

6.3

https://nvd.nist.gov/vuln/detail/CVE-2011-1004

Reference id

Reference type

URL

http://lists.apple.com/archives/security-announce/2012/May/msg00001.html

http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054422.html

http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054436.html

http://osvdb.org/70958

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-1004.json

https://api.first.org/data/v1/epss?cve=CVE-2011-1004

http://secunia.com/advisories/43434

http://secunia.com/advisories/43573

http://support.apple.com/kb/HT5281

https://www.ruby-lang.org/en/news/2011/02/18/fileutils-is-vulnerable-to-symlink-race-attacks

http://www.mandriva.com/security/advisories?name=MDVSA-2011:097

http://www.openwall.com/lists/oss-security/2011/02/21/2

http://www.openwall.com/lists/oss-security/2011/02/21/5

http://www.redhat.com/support/errata/RHSA-2011-0909.html

http://www.redhat.com/support/errata/RHSA-2011-0910.html

http://www.ruby-lang.org/en/news/2011/02/18/fileutils-is-vulnerable-to-symlink-race-attacks/

http://www.securityfocus.com/bid/46460

http://www.vupen.com/english/advisories/2011/0539

678913

https://bugzilla.redhat.com/show_bug.cgi?id=678913

cpe:2.3:a:ruby-lang:ruby:1.8.6:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.6:*:*:*:*:*:*:*

cpe:2.3:a:ruby-lang:ruby:1.8.7:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.7:*:*:*:*:*:*:*

cpe:2.3:a:ruby-lang:ruby:1.8.8:dev:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.8.8:dev:*:*:*:*:*:*

cpe:2.3:a:ruby-lang:ruby:1.9.1:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.1:*:*:*:*:*:*:*

cpe:2.3:a:ruby-lang:ruby:1.9.2:*:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.2:*:*:*:*:*:*:*

cpe:2.3:a:ruby-lang:ruby:1.9.3:dev:*:*:*:*:*:*

https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:ruby-lang:ruby:1.9.3:dev:*:*:*:*:*:*

CVE-2011-1004

https://nvd.nist.gov/vuln/detail/CVE-2011-1004

GLSA-201412-27

https://security.gentoo.org/glsa/201412-27

RHSA-2011:0909

https://access.redhat.com/errata/RHSA-2011:0909

RHSA-2011:0910

https://access.redhat.com/errata/RHSA-2011:0910

USN-1377-1

https://usn.ubuntu.com/1377-1/

Exploitability (E)	Access Vector (AV)	Access Complexity (AC)	Authentication (Au)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
high functional unproven proof_of_concept not_defined	local adjacent_network network	high medium low	multiple single none	none partial complete	none partial complete	none partial complete

Exploitability (E)

Access Vector (AV)

Access Complexity (AC)

Authentication (Au)

Confidentiality Impact (C)

Integrity Impact (I)

Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

partial

complete

none

partial

complete

none

partial

complete

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:14:42.270014+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/201412-27	38.0.0

2026-04-01T13:14:42.270014+00:00

Gentoo Importer

Import

https://security.gentoo.org/glsa/201412-27

38.0.0

Vulnerability ID	VCID-rh8q-s45v-xbhg
Aliases	CVE-2011-1004 GHSA-45wv-gc6w-fq7m OSV-70958
Summary	Multiple vulnerabilities have been found in Ruby, allowing context-dependent attackers to cause a Denial of Service condition.
Status	Published
Exploitability	0.5
Weighted Severity	5.7
Risk	2.9
Affected and Fixed Packages	Package Details

Percentile	0.13495
EPSS Score	0.00044
Published At	April 1, 2026, 12:55 p.m.