GCVE - cpe:2.3:a:amos_benari:rbovirt:0.0.20:*:*:*:*:ruby:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:amos_benari:rbovirt:0.0.20:*:*:*:*:ruby:*:*

part: a version: 0.0.20 update: *

Vendor	Amos Benari (`91e95182-3b15-551b-ba41-d315bcd40311`)
Product	Rbovirt (`ea55cf77-9c28-500a-9af6-5e3eedd301dc`)
Edition	*
Language	*
Software edition	*
Target software	ruby
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:gem/rbovirt`	purl2cpe	2026-06-01 10:13:18.280300
`pkg:github/abenari/rbovirt`	purl2cpe	2026-06-01 10:13:18.280301
`pkg:rpm/opensuse/rubygem-rbovirt`	purl2cpe	2026-06-01 10:13:18.280303

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2014-0036`	vulnerable	2026-06-08 05:05:10.868188	Details available The rbovirt gem before 0.0.24 for Ruby uses the rest-client gem with SSL verification disabled, which allows remote attackers to conduct man-in-the-middle attacks via unspecified vectors. Published: 2014-04-17T14:00:00.000Z Updated: 2024-08-06T08:58:26.516Z Open on db.gcve.eu Reference links http://lists.fedoraproject.org/pipermail/package-announce/2014-March/130148.html http://lists.fedoraproject.org/pipermail/package-announce/2014-March/130180.html http://seclists.org/oss-sec/2014/q1/509 https://bugzilla.redhat.com/show_bug.cgi?id=1058595	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.