Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-7252

Malware in sbrugna...

5CVSS6.4AI score0.00785EPSS
Exploits0References3
OSV
OSV
added 2017/10/24 6:33 p.m.22 views

GHSA-6C8P-QPHV-668V Denial of service in ruby-openid

The ruby-openid gem before 2.2.2 for Ruby allows remote OpenID providers to cause a denial of service CPU consumption via 1 a large XRDS document or 2 an XML Entity Expansion XEE attack...

4.3CVSS9AI score0.02132EPSS
Exploits1References11
RubySec
RubySec
added 2017/10/24 12:0 a.m.24 views

Vulnerable to XIE DoS attacks

The ruby-openid gem before 2.2.2 for Ruby allows remote OpenID providers to cause a denial of service CPU consumption via 1 a large XRDS document or 2 an XML Entity Expansion XEE attack...

4.3CVSS6.8AI score0.02132EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2013/12/12 6:55 p.m.9 views

CVE-2013-1812

The ruby-openid gem before 2.2.2 for Ruby allows remote OpenID providers to cause a denial of service CPU consumption via 1 a large XRDS document or 2 an XML Entity Expansion XEE attack...

6.5AI score
Exploits0References8
Cvelist
Cvelist
added 2013/12/12 6:0 p.m.43 views

CVE-2013-1812

The ruby-openid gem before 2.2.2 for Ruby allows remote OpenID providers to cause a denial of service CPU consumption via 1 a large XRDS document or 2 an XML Entity Expansion XEE attack...

9.1AI score0.02132EPSS
Exploits1References7
Debian CVE
Debian CVE
added 2013/12/12 6:0 p.m.22 views

CVE-2013-1812

The ruby-openid gem before 2.2.2 for Ruby allows remote OpenID providers to cause a denial of service CPU consumption via 1 a large XRDS document or 2 an XML Entity Expansion XEE attack...

4.3CVSS6.2AI score0.02132EPSS
Exploits1
Prion
Prion
added 2011/08/12 5:55 p.m.17 views

Design/Logic Flaw

IBM Tivoli Federated Identity Manager TFIM 6.2.0 before 6.2.0.2 uses an incomplete SAML 1.x browser-artifact, which allows remote OpenID providers to spoof assertions via vectors related to the Issuer field...

5CVSS6.9AI score0.00785EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2011/08/12 5:0 p.m.24 views

CVE-2008-7299

IBM Tivoli Federated Identity Manager TFIM 6.2.0 before 6.2.0.2 uses an incomplete SAML 1.x browser-artifact, which allows remote OpenID providers to spoof assertions via vectors related to the Issuer field...

6.3AI score0.00785EPSS
Exploits0References2
Rows per page
Query Builder