Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2170 matches found

Veracode
Veracodeadded 2019/01/15 8:54 a.m.23 views

Remote Code Execution (RCE)

rubygem-openshift-origin-node is vulnerable to remote code execution. A remote authenticated user is permitted to install cartridges via the web interface, which would allow a remote attacker to abuse the application behavior to execute arbitrary code on the system with root privileges...

10CVSS7.3AI score0.05407EPSS
Exploits0References12Affected Software2
Tenable Nessus
Tenable Nessusadded 2019/01/03 12:0 a.m.29 views

Fedora 28 : 1:rubygem-sinatra (2018-3f61c5cf7c)

Fix XSS in the 400 Bad Request page CVE-2018-11627, rhbz1585218. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

6.1CVSS6.2AI score0.00398EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2019/01/03 12:0 a.m.19 views

Fedora 29 : rubygem-jekyll (2018-4f6deba5f1)

Update to version 3.8.4. This version includes a fix for a possible security issue: The engine now no longer follows symlinks when including files. Release notes: https://github.com/jekyll/jekyll/releases/tag/v3.8.4 Note that Tenable Network Security has extracted the preceding description block...

5.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2019/01/03 12:0 a.m.28 views

Fedora 28 : rubygem-loofah (2018-d716df9942)

XXS when a crafted SVG element is republished CVE-2018-16468. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing...

5.4CVSS6.2AI score0.00314EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2019/01/03 12:0 a.m.49 views

Fedora 29 : 1:rubygem-rack (2018-e8ff8b7f8e)

Buffer size in multipart parser allows for denial of service CVE-2018-16470. - Cross-site scripting XSS via scheme method on Rack::Request CVE-2018-16471. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has...

7.5CVSS6.4AI score0.00829EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2019/01/03 12:0 a.m.13 views

Fedora 28 : 1:ImageMagick / libpaper / rubygem-rmagick (2018-3b518bd80f)

Fixing leaking descriptor libpaper - Fixed numerous use of uninitialized values, integer overflow, memory exceeded, and timeouts credit to OSS Fuzz. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has...

5.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2019/01/03 12:0 a.m.29 views

Fedora 29 : rubygem-loofah (2018-d5fcbb9ca6)

Update to Loofah 2.2.3. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

5.4CVSS6.2AI score0.00314EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2019/01/03 12:0 a.m.24 views

Fedora 28 : 1:rubygem-rack (2018-02e965a729)

Buffer size in multipart parser allows for denial of service CVE-2018-16470. - Cross-site scripting XSS via scheme method on Rack::Request CVE-2018-16471. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has...

7.5CVSS6.4AI score0.00829EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2019/01/02 12:0 a.m.24 views

SUSE SLED15 / SLES15 Security Update : rubygem-activejob-5_1 (SUSE-SU-2018:3996-1)

This update for rubygem-activejob-51 fixes the following issues : Security issue fixed : CVE-2018-16476: Fixed broken access control vulnerability bsc1117632. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has...

7.5CVSS6.1AI score0.00791EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2019/01/02 12:0 a.m.19 views

SUSE SLED15 / SLES15 Security Update : rubygem-loofah (SUSE-SU-2018:3928-1)

This update for rubygem-loofah fixes the following issues : Security issue fixed : CVE-2018-16468: Fixed XXS by removing the svg animate attribute from from the allowlist bsc1113969. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...

5.4CVSS6.2AI score0.00314EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2018/12/10 12:0 a.m.25 views

openSUSE Security Update : rubygem-activejob-5_1 (openSUSE-2018-1502)

This update for rubygem-activejob-51 fixes the following issues : Security issue fixed : - CVE-2018-16476: Fixed broken access control vulnerability bsc1117632. This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptiv...

7.5CVSS6AI score0.00791EPSS
Exploits1References2
OpenVAS
OpenVASadded 2018/12/10 12:0 a.m.15 views

openSUSE: Security Advisory for rubygem-activejob-5_1 (openSUSE-SU-2018:4041-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS7.7AI score0.00791EPSS
Exploits1References2
OPENSUSE Linux
OPENSUSE Linuxadded 2018/12/08 12:21 a.m.72 views

Security update for rubygem-activejob-5_1 (low)

This update for rubygem-activejob-51 fixes the following issues: Security issue fixed: - CVE-2018-16476: Fixed broken access control vulnerability bsc1117632. This update was imported from the SUSE:SLE-15:Update update project...

1.9AI score0.00791EPSS
Exploits1References1
OSV
OSVadded 2018/12/06 8:40 a.m.4 views

SUSE-SU-2018:3996-1 Security update for rubygem-activejob-5_1

This update for rubygem-activejob-51 fixes the following issues: Security issue fixed: - CVE-2018-16476: Fixed broken access control vulnerability bsc1117632...

7.5CVSS7.5AI score0.00791EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2018/12/06 12:0 a.m.49 views

RHEL 6 : rubygem-activesupport (RHSA-2013:0202)

An updated rubygem-activesupport package that fixes one security issue is now available for Red Hat OpenShift Enterprise 1.0. The Red Hat Security Response Team has rated this update as having critical security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

7.5CVSS7.9AI score0.91761EPSS
Exploits7References3
Tenable Nessus
Tenable Nessusadded 2018/12/06 12:0 a.m.43 views

RHEL 6 : ruby193-rubygem-activerecord (RHSA-2013:0699)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2013:0699 advisory. - rubygem-activerecord: attributedos Symbol DoS vulnerability CVE-2013-1854 Note that Nessus has not tested for this issue but has instead relied onl...

5CVSS7.3AI score0.01795EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2018/12/04 12:0 a.m.28 views

RHEL 6 : rubygem-openshift-origin-node (RHSA-2014:0764)

An updated rubygem-openshift-origin-node package that fixes one security issue and several bugs is now available for Red Hat OpenShift Enterprise 2.1.1. The Red Hat Security Response Team has rated this update as having Critical security impact. A Common Vulnerability Scoring System CVSS base...

10CVSS6AI score0.05407EPSS
Exploits0References3
OpenVAS
OpenVASadded 2018/12/04 12:0 a.m.25 views

Fedora Update for rubygem-loofah FEDORA-2018-d716df9942

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.4CVSS5.9AI score0.00314EPSS
Exploits0References3
OpenVAS
OpenVASadded 2018/12/04 12:0 a.m.19 views

openSUSE: Security Advisory for rubygem-loofah (openSUSE-SU-2018:3951-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.4CVSS6AI score0.00314EPSS
Exploits0References3
OpenVAS
OpenVASadded 2018/12/04 12:0 a.m.22 views

Fedora Update for rubygem-rack FEDORA-2018-5743ef02a1

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.5AI score0.00829EPSS
Exploits0References2
Rows per page
Query Builder