CVE-2014-0081

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 18-02-2014 01:00

Last modified: - 18-02-2014 01:00

Total changes: - 10

Description

CVE-2014-0081 rubygem-actionpack: number_to_currency, number_to_percentage and number_to_human XSS vulnerability

Common Vulnerability Scoring System (CVSS)

AV:N/AC:M/Au:N/C:N/I:P/A:N

Low

Attack complexity

Network

Attack vector

None

Availability

None

Confidentiality

Low

Integrity

-

Privileges required

-

Scope

-

User interaction

4.3

Base score

Exploitability score

Impact score

Verification logic

OR

AND

product=cfme-0 AND versionEndExcluding=5.2.2.3-1.el6cf

vendor=cloudforms_managementengine AND product=5 AND version=

AND

product=ruby193-ruby-0 AND versionEndExcluding=1.9.3.448-40.1.el6

vendor=cloudforms_managementengine AND product=5 AND version=

AND

product=ruby193-rubygem-actionpack-1 AND versionEndExcluding=3.2.13-5.el6cf

vendor=cloudforms_managementengine AND product=5 AND version=

AND

product=ruby193-rubygem-amq-protocol-0 AND versionEndExcluding=1.9.2-3.el6cf

vendor=cloudforms_managementengine AND product=5 AND version=

AND

product=ruby193-rubygem-bunny-0 AND versionEndExcluding=1.0.7-1.el6cf

vendor=cloudforms_managementengine AND product=5 AND version=

AND

product=ruby193-rubygem-excon-0 AND versionEndExcluding=0.31.0-1.el6cf

vendor=cloudforms_managementengine AND product=5 AND version=

AND

product=ruby193-rubygem-fog-0 AND versionEndExcluding=1.19.0-1.el6cf

vendor=cloudforms_managementengine AND product=5 AND version=

AND

product=ruby193-rubygem-linux_admin-0 AND versionEndExcluding=0.7.0-1.el6cf

vendor=cloudforms_managementengine AND product=5 AND version=

AND

product=ruby193-rubygem-more_core_extensions-0 AND versionEndExcluding=1.1.2-1.el6cf

vendor=cloudforms_managementengine AND product=5 AND version=

AND

product=ruby193-rubygem-nokogiri-0 AND versionEndExcluding=1.5.6-3.el6cf

vendor=cloudforms_managementengine AND product=5 AND version=

AND

product=ruby193-rubygem-actionpack-1 AND versionEndExcluding=3.2.8-5.3.el6

vendor=Red Hat Enterprise Linux AND product=rhel_software_collections AND version=1

AND

product=ruby193-rubygem-actionpack AND version=

vendor=Red Hat Enterprise Linux AND product=openshift AND version=1

AND

product=ruby193-rubygem-actionpack AND version=

vendor=Red Hat Enterprise Linux AND product=openstack AND version=3

AND

product=ruby193-rubygem-actionpack AND version=

vendor=Red Hat Enterprise Linux AND product=openstack AND version=4

AND

product=ruby193-rubygem-actionpack AND version=

vendor=Red Hat Enterprise Linux AND product=satellite AND version=6

AND

product=ror40-rubygem-actionpack AND version=

vendor=Red Hat Enterprise Linux AND product=rhel_software_collections AND version=1

AND

product=ruby193-rubygem-actionpack AND version=

vendor=rhel_sam AND product=1

Reference

Keywords

REDHAT

CVE-2014-0081

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.