HIGH 7.3 RubyGems
actionpack allows remote code execution via application's unrestricted use of render method
GHSA-78rc-8c29-p45g · CVE-2016-2098
Published · Modified
Description
Action Pack in Ruby on Rails before 3.2.22.2, 4.x before 4.1.14.2, and 4.2.x before 4.2.5.2 allows remote attackers to execute arbitrary Ruby code by leveraging an application's unrestricted use of the render method.
References
- ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2016-2098
- PACKAGE https://github.com/rails/rails
- WEB https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2016-2098.yml
- WEB https://groups.google.com/forum/#!topic/rubyonrails-security/ly-IH-fxr_Q
- WEB https://web.archive.org/web/20200228015318/http://www.securityfocus.com/bid/83725
- WEB https://web.archive.org/web/20210612214217/https://groups.google.com/forum/message/raw?msg=rubyonrails-security/ly-IH-fxr_Q/WLoOhcMZIAAJ
- WEB https://web.archive.org/web/20211205173437/https://securitytracker.com/id/1035122
- WEB https://www.exploit-db.com/exploits/40086
- WEB http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00057.html
- WEB http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00080.html
- WEB http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00083.html
- WEB http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00086.html
- WEB http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00006.html
- WEB http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00053.html
- WEB http://weblog.rubyonrails.org/2016/2/29/Rails-4-2-5-2-4-1-14-2-3-2-22-2-have-been-released
- WEB http://www.debian.org/security/2016/dsa-3509
Ready to move
Start Securing
Free, no credit card | First findings in minutes