Remote code execution via user-provided local names in ActionView

GHSA-cr3x-7m39-c6jq · BIT-rails-2020-8163 · CVE-2020-8163

Published Jul 7, 2020 · Modified Feb 16, 2024

Description

The is a code injection vulnerability in versions of Rails prior to 5.0.1 that would allow an attacker who controlled the locals argument of a render call to perform a RCE.

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2020-8163
WEB https://hackerone.com/reports/304805
WEB https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionview/CVE-2020-8163.yml
WEB https://groups.google.com/forum/#!topic/rubyonrails-security/hWuKcHyoKh0
WEB https://groups.google.com/g/rubyonrails-security/c/hWuKcHyoKh0
WEB https://lists.debian.org/debian-lts-announce/2020/07/msg00013.html
WEB http://packetstormsecurity.com/files/158604/Ruby-On-Rails-5.0.1-Remote-Code-Execution.html

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes