CVE-2011-0449 — Project Actionpack vulnerability

CWE-2646 documents6 sources

Severity

7.5HIGHNVD

EPSS

0.6%

top 31.86%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Actionpack Project Actionpack Rubyonrails Rails

Timeline

PublishedFeb 21

Latest updateOct 24

Description

actionpack/lib/action_view/template/resolver.rb in Ruby on Rails 3.0.x before 3.0.4, when a case-insensitive filesystem is used, does not properly implement filters associated with the list of available templates, which allows remote attackers to bypass intended access restrictions via an action name that uses an unintended case for alphabetic characters.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

▶RubyGemsactionpack_project/actionpack3.0.0 — 3.0.4

▶NVDrubyonrails/rails5 versions+4

Patches

Patch: weblog.rubyonrails.org ↗Patch: weblog.rubyonrails.org ↗

🔴Vulnerability Details

GHSA

actionpack allows remote attackers to bypass intended access restrictions↗2017-10-24

▶

OSV

actionpack allows remote attackers to bypass intended access restrictions↗2017-10-24

▶

CVEList

CVE-2011-0449: actionpack/lib/action_view/template/resolver↗2011-02-21

▶

📋Vendor Advisories

Debian

CVE-2011-0449: rails - actionpack/lib/action_view/template/resolver.rb in Ruby on Rails 3.0.x before 3....↗2011

▶

💬Community

Bugzilla

CVE-2011-0449 rubygem-actionpack: Intended access restriction bypass via crafted action name, when case-insensitive filesystem is used↗2011-02-22

▶