Vulnerabilities > Janrain > Ruby Openid > 2.2.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-12-12 | CVE-2013-1812 | Resource Management Errors vulnerability in multiple products The ruby-openid gem before 2.2.2 for Ruby allows remote OpenID providers to cause a denial of service (CPU consumption) via (1) a large XRDS document or (2) an XML Entity Expansion (XEE) attack. | 4.3 |