Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

25 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2018-2961

Malware in sbrugna...

7.8CVSS7.5AI score0.00108EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2024/04/27 12:0 a.m.21 views

RHEL 7 : CloudForms 4.5.5 (RHSA-2018:2745)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:2745 advisory. Red Hat CloudForms Management Engine delivers the insight, control, and automation needed to address the challenges of managing virtual...

7.8CVSS8.1AI score0.93887EPSS
Exploits2References31
NVD
NVDadded 2019/11/18 6:15 p.m.15 views

CVE-2011-5331

Distributed Ruby aka DRuby 1.8 mishandles instanceeval...

9.8CVSS9.5AI score0.05028EPSS
Exploits1References1
Prion
Prionadded 2019/11/18 6:15 p.m.10 views

Design/Logic Flaw

Distributed Ruby aka DRuby 1.8 mishandles instanceeval...

7.5CVSS7.1AI score0.05028EPSS
Exploits1References1Affected Software1
Prion
Prionadded 2019/11/18 6:15 p.m.13 views

Code injection

Distributed Ruby aka DRuby 1.8 mishandles the sending of syscalls...

7.5CVSS7.2AI score0.00324EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2019/11/18 5:8 p.m.61 views

CVE-2011-5331

CVE-2011-5331 affects Distributed Ruby (DRuby) 1.8, described as a mishandling of instance_eval. The connected documents corroborate this description but do not provide concrete affected versions beyond DRuby 1.8, nor any explicit patch/version for remediation. Exploitation status is not detailed...

9.8CVSS9.3AI score0.05028EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2019/11/18 5:7 p.m.71 views

CVE-2011-5330

Technical details about CVE-2011-5330 are not publicly available in the provided documents. The entries only state that Distributed Ruby (DRuby) 1.8 mishandles the sending of syscalls. Monitor for updates from vendors and security advisories.

9.8CVSS9.4AI score0.00324EPSS
Exploits1References1Affected Software1
RedhatCVE
RedhatCVEadded 2019/10/11 10:51 a.m.25 views

CVE-2018-10905

CloudForms Management Engine has a vulnerability that allows local users to execute arbitrary commands as root. An attacker with SSH access to the system can use the dRuby DRb module installed on the system to execute arbitrary shell commands using instanceeval. Mitigation Administrators of the...

7.8CVSS4.2AI score0.00108EPSS
Exploits0References2
Veracode
Veracodeadded 2019/01/15 9:25 a.m.25 views

Arbitrary Code Execution

cfme is vulnerable to arbitrary code execution. An improper access control in dRuby allows local users to execute arbitrary commands as root...

7.8CVSS8AI score0.00108EPSS
Exploits0References51Affected Software6
RedHat Linux
RedHat Linuxadded 2018/09/26 6:36 p.m.4 views

cfme: Improper access control in dRuby allows local users to execute arbitrary commands as root

CloudForms Management Engine has a vulnerability that allows local users to execute arbitrary commands as root. An attacker with SSH access to the system can use the dRuby DRb module installed on the system to execute arbitrary shell commands using instanceeval...

7.8CVSS6.1AI score0.00108EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2018/09/26 6:36 p.m.42 views

Important: Red Hat Security Advisory: CloudForms 4.5.5 security, bug fix and enhancement update

An update is now available for CloudForms Management Engine 5.8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

7.8CVSS7.5AI score0.93887EPSS
Exploits2References28
RedHat Linux
RedHat Linuxadded 2018/09/04 6:0 p.m.47 views

Important: Red Hat Security Advisory: CloudForms 4.6.4 security, bug fix, and enhancement update

An update is now available for CloudForms Management Engine 5.9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

7.8CVSS7.5AI score0.93887EPSS
Exploits2References49
RedHat Linux
RedHat Linuxadded 2018/09/04 6:0 p.m.2 views

cfme: Improper access control in dRuby allows local users to execute arbitrary commands as root

CloudForms Management Engine has a vulnerability that allows local users to execute arbitrary commands as root. An attacker with SSH access to the system can use the dRuby DRb module installed on the system to execute arbitrary shell commands using instanceeval...

7.8CVSS6.1AI score0.00108EPSS
Exploits0References4
CNVD
CNVDadded 2018/07/26 12:0 a.m.2 views

Red Hat CloudForms Management Engine Logic Flaw Vulnerability

The Red Hat CloudForms Management Engine CFME is a management engine for IaaS Infrastructure as a Service cloud services solutions from Red Hat, Inc. A security vulnerability exists in dRuby in Red Hat CFME that stems from a failure to properly configure security settings. An attacker could explo...

7.8CVSS7.6AI score0.00108EPSS
Exploits0References1
OSV
OSVadded 2018/07/24 1:29 p.m.3 views

CVE-2018-10905

CloudForms Management Engine cfme is vulnerable to an improper security setting in the dRuby component of CloudForms. An attacker with access to an unprivileged local shell could use this flaw to execute commands as a high privileged user...

7.8CVSS5.9AI score0.00108EPSS
Exploits0References3
Prion
Prionadded 2018/07/24 1:29 p.m.25 views

Design/Logic Flaw

CloudForms Management Engine cfme is vulnerable to an improper security setting in the dRuby component of CloudForms. An attacker with access to an unprivileged local shell could use this flaw to execute commands as a high privileged user...

7.2CVSS7.5AI score0.00108EPSS
Exploits0References3Affected Software2
NVD
NVDadded 2018/07/24 1:29 p.m.16 views

CVE-2018-10905

CloudForms Management Engine cfme is vulnerable to an improper security setting in the dRuby component of CloudForms. An attacker with access to an unprivileged local shell could use this flaw to execute commands as a high privileged user...

7.8CVSS7.4AI score0.00108EPSS
Exploits0References3
Cvelist
Cvelistadded 2018/07/24 1:0 p.m.22 views

CVE-2018-10905

CloudForms Management Engine cfme is vulnerable to an improper security setting in the dRuby component of CloudForms. An attacker with access to an unprivileged local shell could use this flaw to execute commands as a high privileged user...

7.8CVSS7.4AI score0.00108EPSS
Exploits0References3
CVE
CVEadded 2018/07/24 1:0 p.m.104 views

CVE-2018-10905

CVE-2018-10905 affects Red Hat CloudForms Management Engine (cfme) via an improper access control in the dRuby (DRb) component. A local attacker with access to an unprivileged shell can execute arbitrary commands as a highly privileged user (root). The issue is documented across Red Hat advisorie...

7.8CVSS7.3AI score0.00108EPSS
Exploits0References3Affected Software2
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.25 views

Distributed Ruby send syscall vulnerability

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/projects/Framework/ require...

7.1AI score
Exploits0
Rows per page
Query Builder