Vulnerability Name:

CVE-2014-7829 (CCN-98732)

Assigned:2014-11-17
Published:2014-11-17
Updated:2019-08-08
Summary:Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.21, 4.0.x before 4.0.12, 4.1.x before 4.1.8, and 4.2.x before 4.2.0.beta4, when serve_static_assets is enabled, allows remote attackers to determine the existence of files outside the application root via vectors involving a \ (backslash) character, a similar issue to CVE-2014-7818.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-22
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2014-7829

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2014:1515

Source: CCN
Type: oss-security Mailing List, Mon, 17 Nov 2014 08:10:10 -0800
[CVE-2014-7829] Arbitrary file existence disclosure in Action Pack

Source: CCN
Type: Ruby on Rails Web Site
Rails 3.2.21, 4.0.12, and 4.1.8 have been released

Source: CCN
Type: IBM Security Bulletin 1702788
IBM License Metric Tool v9 is vulnerable to two attacks on Ruby on Rails component - CVE-2014-0130, CVE-2014-7829

Source: CCN
Type: IBM Security Bulletin 1882702
IBM Endpoint Manager for Software Use Analysis v9 and v2.2 are vulnerable to two attacks on Ruby on Rails component - CVE-2014-0130, CVE-2014-7829

Source: CCN
Type: IBM Security Bulletin 1903644
Vulnerability in Ruby on Rails affects IBM Endpoint Manager for Security Configuration Management (CVE-2014-7829)

Source: BID
Type: UNKNOWN
71183

Source: CCN
Type: BID-71183
Ruby on Rails Action Pack Comp CVE-2014-7829 Incomplete Fix Information Disclosure Vulnerability

Source: XF
Type: UNKNOWN
rubyonrails-cve20147829-info-disc(98732)

Source: MLIST
Type: Exploit
[rubyonrails-security] 20141117 [CVE-2014-7829] Arbitrary file existence disclosure in Action Pack

Source: CONFIRM
Type: UNKNOWN
https://puppet.com/security/cve/cve-2014-7829

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2014-7829

Vulnerable Configuration:Configuration 1:
  • cpe:/o:opensuse:opensuse:12.3:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

  • Configuration 2:
  • cpe:/a:rubyonrails:rails:3.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.0:beta:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.0:beta2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.0:beta3:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.0:beta4:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.0:rc:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.0:rc2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.1:-:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.1:pre:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.2:-:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.2:pre:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.4:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.5:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.6:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.6:rc2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.7:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.7:rc2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.8:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.8:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.8:rc2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.8:rc3:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.8:rc4:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.9:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.9:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.9:rc2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.9:rc3:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.9:rc4:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.9:rc5:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.10:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.10:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.11:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.12:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.12:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.13:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.13:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.14:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.16:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.17:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.18:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.19:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.20:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.0:beta1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.0:rc2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.0:rc3:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.0:rc4:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.0:rc5:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.0:rc6:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.0:rc7:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.0:rc8:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.1:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.1:rc2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.1:rc3:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.2:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.2:rc2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.4:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.5:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.6:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.7:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.8:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.9:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.1.10:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.0:rc2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.2:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.3:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.3:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.3:rc2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.4:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.4:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.5:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.6:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.7:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.8:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.10:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.11:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.12:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.13:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.13:rc2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.15:rc3:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.16:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.17:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.2.18:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.0:-:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.0:beta:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.0:rc2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.1:-:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.1:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.1:rc2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.1:rc3:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.1:rc4:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.6:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.6:rc2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.6:rc3:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.8:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.9:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.10:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.0.10:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.1.0:-:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.1.0:beta1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.1.2:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.1.2:rc2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.1.2:rc3:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.1.6:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.1.6:rc1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.1.7:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.2.0:beta1:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.2.0:beta2:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:4.2.0:beta3:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:rails:3.0.4:-:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:ruby_on_rails:3.2.19:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:ruby_on_rails:3.2.20:*:*:*:*:*:*:*
  • OR cpe:/a:rubyonrails:ruby_on_rails:4.0.11:*:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/a:rubyonrails:rails:3.0.0:-:*:*:*:*:*:*
  • AND
  • cpe:/a:ibm:license_metric_tool:9.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:license_metric_tool:9.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:license_metric_tool:9.1:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20147829
    V
    CVE-2014-7829
    2022-06-30
    oval:org.opensuse.security:def:7
    P
    apr-util-devel-1.6.1-16.43 on GA media (Moderate)
    2022-06-13
    oval:org.opensuse.security:def:20
    P
    bubblewrap-0.4.1-1.16 on GA media (Moderate)
    2022-06-13
    oval:org.opensuse.security:def:113352
    P
    ruby2.2-rubygem-actionpack-4_2-4.2.7.1-1.1 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:106759
    P
    Security update for log4j (Important)
    2021-12-17
    oval:org.opensuse.security:def:26181
    P
    Security update for mozilla-nss (Important)
    2021-12-06
    oval:org.opensuse.security:def:55254
    P
    Security update for webkit2gtk3 (Important)
    2021-10-06
    oval:org.opensuse.security:def:26117
    P
    Security update for xen (Important)
    2021-09-02
    oval:org.opensuse.security:def:67543
    P
    Security update for openssl-1_0_0 (Important)
    2021-08-24
    oval:org.opensuse.security:def:55937
    P
    Security update for java-1_8_0-openjdk (Important)
    2021-08-20
    oval:org.opensuse.security:def:26106
    P
    Security update for libmspack (Moderate)
    2021-08-17
    oval:org.opensuse.security:def:26105
    P
    Security update for MozillaFirefox (Important)
    2021-08-17
    oval:org.opensuse.security:def:36556
    P
    rubygem-actionpack-3_2-3.2.12-0.19.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:70896
    P
    elfutils-0.168-2.164 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:70783
    P
    Security update for libwebp (Critical)
    2021-06-04
    oval:org.opensuse.security:def:55771
    P
    Security update for python-cryptography (Moderate)
    2020-12-04
    oval:org.opensuse.security:def:96505
    P
    ruby2.5-rubygem-actionpack-5_1-5.1.4-3.3.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:103195
    P
    ruby2.5-rubygem-actionpack-5_1-5.1.4-3.3.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:89540
    P
    ruby2.5-rubygem-actionpack-5_1-5.1.4-3.3.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:55492
    P
    Security update for libksba (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:64196
    P
    ruby2.5-rubygem-actionpack-5_1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:56615
    P
    Security update for postgresql10 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26784
    P
    mono-core on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:67443
    P
    Security update for SUSE Manager Proxy 4.1 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26837
    P
    vte on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:56222
    P
    Security update for xen (Important)
    2020-12-01
    oval:org.opensuse.security:def:26390
    P
    Security update for ark (Low)
    2020-12-01
    oval:org.opensuse.security:def:55092
    P
    dia on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:56422
    P
    Security update for poppler (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26531
    P
    coolkey on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:56534
    P
    Security update for libvpx (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26735
    P
    libMagickCore1-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:55665
    P
    Security update for libpng16 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27519
    P
    nagios on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26823
    P
    star on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26309
    P
    Security update for haproxy (Important)
    2020-12-01
    oval:org.opensuse.security:def:55091
    P
    dhcp on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:27554
    P
    rubygem-actionpack-3_2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26881
    P
    dbus-1 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:56330
    P
    Security update for gd (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26447
    P
    Security update for pdns (Important)
    2020-12-01
    oval:org.opensuse.security:def:55114
    P
    gdk-pixbuf-lang on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:64109
    P
    Security update for bluez (Important)
    2020-12-01
    oval:org.opensuse.security:def:56496
    P
    Security update for binutils (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:26682
    P
    cyrus-imapd on GA media (Moderate)
    2020-12-01
    oval:com.ubuntu.cosmic:def:201478290000000
    V
    CVE-2014-7829 on Ubuntu 18.10 (cosmic) - low.
    2014-11-18
    oval:com.ubuntu.artful:def:20147829000
    V
    CVE-2014-7829 on Ubuntu 17.10 (artful) - low.
    2014-11-18
    oval:com.ubuntu.trusty:def:20147829000
    V
    CVE-2014-7829 on Ubuntu 14.04 LTS (trusty) - low.
    2014-11-18
    oval:com.ubuntu.bionic:def:201478290000000
    V
    CVE-2014-7829 on Ubuntu 18.04 LTS (bionic) - low.
    2014-11-18
    oval:com.ubuntu.bionic:def:20147829000
    V
    CVE-2014-7829 on Ubuntu 18.04 LTS (bionic) - low.
    2014-11-18
    oval:com.ubuntu.xenial:def:20147829000
    V
    CVE-2014-7829 on Ubuntu 16.04 LTS (xenial) - low.
    2014-11-18
    oval:com.ubuntu.xenial:def:201478290000000
    V
    CVE-2014-7829 on Ubuntu 16.04 LTS (xenial) - low.
    2014-11-18
    oval:com.ubuntu.cosmic:def:20147829000
    V
    CVE-2014-7829 on Ubuntu 18.10 (cosmic) - low.
    2014-11-18
    oval:com.ubuntu.precise:def:20147829000
    V
    CVE-2014-7829 on Ubuntu 12.04 LTS (precise) - low.
    2014-11-18
    BACK
    opensuse opensuse 12.3
    opensuse opensuse 13.1
    opensuse opensuse 13.2
    rubyonrails rails 3.0.0
    rubyonrails rails 3.0.0 beta
    rubyonrails rails 3.0.0 beta2
    rubyonrails rails 3.0.0 beta3
    rubyonrails rails 3.0.0 beta4
    rubyonrails rails 3.0.0 rc
    rubyonrails rails 3.0.0 rc2
    rubyonrails rails 3.0.1
    rubyonrails rails 3.0.1 pre
    rubyonrails rails 3.0.2
    rubyonrails rails 3.0.2 pre
    rubyonrails rails 3.0.3
    rubyonrails rails 3.0.4 rc1
    rubyonrails rails 3.0.5
    rubyonrails rails 3.0.5 rc1
    rubyonrails rails 3.0.6
    rubyonrails rails 3.0.6 rc1
    rubyonrails rails 3.0.6 rc2
    rubyonrails rails 3.0.7
    rubyonrails rails 3.0.7 rc1
    rubyonrails rails 3.0.7 rc2
    rubyonrails rails 3.0.8
    rubyonrails rails 3.0.8 rc1
    rubyonrails rails 3.0.8 rc2
    rubyonrails rails 3.0.8 rc3
    rubyonrails rails 3.0.8 rc4
    rubyonrails rails 3.0.9
    rubyonrails rails 3.0.9 rc1
    rubyonrails rails 3.0.9 rc2
    rubyonrails rails 3.0.9 rc3
    rubyonrails rails 3.0.9 rc4
    rubyonrails rails 3.0.9 rc5
    rubyonrails rails 3.0.10
    rubyonrails rails 3.0.10 rc1
    rubyonrails rails 3.0.11
    rubyonrails rails 3.0.12
    rubyonrails rails 3.0.12 rc1
    rubyonrails rails 3.0.13
    rubyonrails rails 3.0.13 rc1
    rubyonrails rails 3.0.14
    rubyonrails rails 3.0.16
    rubyonrails rails 3.0.17
    rubyonrails rails 3.0.18
    rubyonrails rails 3.0.19
    rubyonrails rails 3.0.20
    rubyonrails rails 3.1.0
    rubyonrails rails 3.1.0 beta1
    rubyonrails rails 3.1.0 rc1
    rubyonrails rails 3.1.0 rc2
    rubyonrails rails 3.1.0 rc3
    rubyonrails rails 3.1.0 rc4
    rubyonrails rails 3.1.0 rc5
    rubyonrails rails 3.1.0 rc6
    rubyonrails rails 3.1.0 rc7
    rubyonrails rails 3.1.0 rc8
    rubyonrails rails 3.1.1
    rubyonrails rails 3.1.1 rc1
    rubyonrails rails 3.1.1 rc2
    rubyonrails rails 3.1.1 rc3
    rubyonrails rails 3.1.2
    rubyonrails rails 3.1.2 rc1
    rubyonrails rails 3.1.2 rc2
    rubyonrails rails 3.1.3
    rubyonrails rails 3.1.4
    rubyonrails rails 3.1.4 rc1
    rubyonrails rails 3.1.5
    rubyonrails rails 3.1.5 rc1
    rubyonrails rails 3.1.6
    rubyonrails rails 3.1.7
    rubyonrails rails 3.1.8
    rubyonrails rails 3.1.9
    rubyonrails rails 3.1.10
    rubyonrails rails 3.2.0
    rubyonrails rails 3.2.0 rc1
    rubyonrails rails 3.2.0 rc2
    rubyonrails rails 3.2.1
    rubyonrails rails 3.2.2
    rubyonrails rails 3.2.2 rc1
    rubyonrails rails 3.2.3
    rubyonrails rails 3.2.3 rc1
    rubyonrails rails 3.2.3 rc2
    rubyonrails rails 3.2.4
    rubyonrails rails 3.2.4 rc1
    rubyonrails rails 3.2.5
    rubyonrails rails 3.2.6
    rubyonrails rails 3.2.7
    rubyonrails rails 3.2.8
    rubyonrails rails 3.2.10
    rubyonrails rails 3.2.11
    rubyonrails rails 3.2.12
    rubyonrails rails 3.2.13 rc1
    rubyonrails rails 3.2.13 rc2
    rubyonrails rails 3.2.15 rc3
    rubyonrails rails 3.2.16
    rubyonrails rails 3.2.17
    rubyonrails rails 3.2.18
    rubyonrails rails 4.0.0 -
    rubyonrails rails 4.0.0 beta
    rubyonrails rails 4.0.0 rc1
    rubyonrails rails 4.0.0 rc2
    rubyonrails rails 4.0.1 -
    rubyonrails rails 4.0.1 rc1
    rubyonrails rails 4.0.1 rc2
    rubyonrails rails 4.0.1 rc3
    rubyonrails rails 4.0.1 rc4
    rubyonrails rails 4.0.2
    rubyonrails rails 4.0.3
    rubyonrails rails 4.0.4
    rubyonrails rails 4.0.5
    rubyonrails rails 4.0.6
    rubyonrails rails 4.0.6 rc1
    rubyonrails rails 4.0.6 rc2
    rubyonrails rails 4.0.6 rc3
    rubyonrails rails 4.0.7
    rubyonrails rails 4.0.8
    rubyonrails rails 4.0.9
    rubyonrails rails 4.0.10
    rubyonrails rails 4.0.10 rc1
    rubyonrails rails 4.1.0 -
    rubyonrails rails 4.1.0 beta1
    rubyonrails rails 4.1.1
    rubyonrails rails 4.1.2
    rubyonrails rails 4.1.2 rc1
    rubyonrails rails 4.1.2 rc2
    rubyonrails rails 4.1.2 rc3
    rubyonrails rails 4.1.3
    rubyonrails rails 4.1.4
    rubyonrails rails 4.1.5
    rubyonrails rails 4.1.6
    rubyonrails rails 4.1.6 rc1
    rubyonrails rails 4.1.7
    rubyonrails rails 4.2.0 beta1
    rubyonrails rails 4.2.0 beta2
    rubyonrails rails 4.2.0 beta3
    rubyonrails ruby on rails 3.0.4
    rubyonrails ruby on rails 3.2.19
    rubyonrails ruby on rails 3.2.20
    rubyonrails ruby on rails 4.0.11
    rubyonrails ruby on rails 3.0
    ibm license metric tool 9.0
    ibm license metric tool 9.0.1
    ibm license metric tool 9.1