rubygem-smart_proxy_dhcp_remote_isc vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the rubygem-smart_proxy_dhcp_remote_isc package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
M Information Exposure Through Log Files	<0:0.0.4-1.el7sat
M Cross-site Scripting (XSS)	<0:0.0.4-1.el7sat
M Cross-site Scripting (XSS)	<0:0.0.4-1.el7sat
M Cross-site Scripting (XSS)	<0:0.0.4-1.el7sat
H Information Exposure	<0:0.0.4-1.el7sat
H SQL Injection	<0:0.0.4-1.el7sat
H Information Exposure	<0:0.0.4-1.el7sat
H Deserialization of Untrusted Data	<0:0.0.4-1.el7sat
H Cross-site Scripting (XSS)	<0:0.0.4-1.el7sat
H Cross-site Scripting (XSS)	<0:0.0.4-1.el7sat
H XML External Entity (XXE) Injection	<0:0.0.4-1.el7sat
H Information Exposure	<0:0.0.4-1.el7sat
H Use of a Broken or Risky Cryptographic Algorithm	<0:0.0.4-1.el7sat
H Improper Access Control	<0:0.0.4-1.el7sat
H Missing Required Cryptographic Step	<0:0.0.4-1.el7sat
H Missing Required Cryptographic Step	<0:0.0.4-1.el7sat
H Information Exposure	<0:0.0.4-1.el7sat
H Covert Timing Channel	<0:0.0.4-1.el7sat
H Incorrect Calculation	<0:0.0.4-1.el7sat
H Missing Required Cryptographic Step	<0:0.0.4-1.el7sat
H Missing Required Cryptographic Step	<0:0.0.4-1.el7sat
H Missing Required Cryptographic Step	<0:0.0.4-1.el7sat
M Directory Traversal	<0:0.0.4-1.el7sat
H Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	<0:0.0.4-1.el7sat
H Improper Certificate Validation	<0:0.0.4-1.el7sat
H SQL Injection	<0:0.0.2.1-1.fm1_15.el7sat
H Cleartext Storage of Sensitive Information	<0:0.0.2.1-1.fm1_15.el7sat
H Insufficient Verification of Data Authenticity	<0:0.0.2.1-1.fm1_15.el7sat
H Deserialization of Untrusted Data	<0:0.0.2.1-1.fm1_15.el7sat
H Improper Input Validation	<0:0.0.2.1-1.fm1_15.el7sat
H Insecure Temporary File	<0:0.0.2.1-1.fm1_15.el7sat
H Insufficiently Protected Credentials	<0:0.0.2.1-1.fm1_15.el7sat
H Cross-site Scripting (XSS)	<0:0.0.2.1-1.fm1_15.el7sat
H Cross-site Scripting (XSS)	<0:0.0.2.1-1.fm1_15.el7sat
H Cross-site Scripting (XSS)	<0:0.0.2.1-1.fm1_15.el7sat
H Improper Authorization	<0:0.0.2.1-1.fm1_15.el7sat
H Improper Authorization	<0:0.0.2.1-1.fm1_15.el7sat
H Cross-site Scripting (XSS)	<0:0.0.2.1-1.fm1_15.el7sat
H Information Exposure Through Log Files	<0:0.0.2.1-1.fm1_15.el7sat
H Information Exposure	<0:0.0.2.1-1.fm1_15.el7sat
H Improper Access Control	<0:0.0.2.1-1.fm1_15.el7sat
H Use of Insufficiently Random Values	<0:0.0.2.1-1.fm1_15.el7sat
H Incorrect Permission Assignment for Critical Resource	<0:0.0.2.1-1.fm1_15.el7sat
H Improper Input Validation	<0:0.0.2.1-1.fm1_15.el7sat
H Improper Access Control	<0:0.0.2.1-1.fm1_15.el7sat
H Cross-site Scripting (XSS)	<0:0.0.2.1-1.fm1_15.el7sat
M Incorrect Permission Assignment for Critical Resource	<0:0.0.4-1.el7sat
M Cleartext Storage of Sensitive Information	<0:0.0.4-1.el7sat
M Improper Authentication	<0:0.0.4-1.el7sat
H Information Exposure	<0:0.0.4-1.el7sat
H Improper Authorization	<0:0.0.4-1.el7sat
H Cleartext Transmission of Sensitive Information	<0:0.0.4-1.el7sat
H Improper Certificate Validation	<0:0.0.4-1.el7sat
H Improper Input Validation	<0:0.0.4-1.el7sat
H Improper Input Validation	<0:0.0.4-1.el7sat
H Cross-site Scripting (XSS)	<0:0.0.4-1.el7sat
M Cross-site Scripting (XSS)	<0:0.0.4-1.el7sat
H Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')	<0:0.0.4-1.el7sat
H Information Exposure	<0:0.0.4-1.el7sat
M Resource Exhaustion	<0:0.0.4-1.el7sat
H Incomplete Blacklist	<0:0.0.4-1.el7sat
H Integer Overflow or Wraparound	<0:0.0.2.1-1.fm1_15.el7sat
M HTTP Response Splitting	<0:0.0.4-1.el7sat
M Arbitrary Argument Injection	<0:0.0.4-1.el7sat
H Out-of-Bounds	<0:0.0.4-1.el7sat
M Improper Neutralization of Special Elements	<0:0.0.4-1.el7sat
H Deserialization of Untrusted Data	<0:0.0.4-1.el7sat
M CVE-2016-6346	<0:0.0.4-1.el7sat
M Improper Neutralization of Special Elements	<0:0.0.4-1.el7sat
H Deserialization of Untrusted Data	<0:0.0.4-1.el7sat

Vulnerability

Vulnerable Version

Information Exposure Through Log Files

<0:0.0.4-1.el7sat

Cross-site Scripting (XSS)

<0:0.0.4-1.el7sat

Cross-site Scripting (XSS)

<0:0.0.4-1.el7sat

Cross-site Scripting (XSS)

<0:0.0.4-1.el7sat

Information Exposure

<0:0.0.4-1.el7sat