CVE-2011-2929 — Improper Input Validation in Project Actionpack

CWE-20 — Improper Input Validation6 documents6 sources

Severity

5.0MEDIUMNVD

EPSS

0.8%

top 25.69%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Actionpack Project Actionpack Rubyonrails Rails Rubyonrails Ruby ON Rails

Timeline

PublishedAug 29

Latest updateOct 24

Description

The template selection functionality in actionpack/lib/action_view/template/resolver.rb in Ruby on Rails 3.0.x before 3.0.10 and 3.1.x before 3.1.0.rc6 does not properly handle glob characters, which allows remote attackers to render arbitrary views via a crafted URL, related to a "filter skipping vulnerability."

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages3 packages

▶NVDrubyonrails/rails12 versions+11

▶NVDrubyonrails/ruby_on_rails3.0.4

▶RubyGemsactionpack_project/actionpack3.0.0 — 3.0.10

Patches

Patch: groups.google.com ↗Patch: weblog.rubyonrails.org ↗Patch: www.openwall.com ↗

🔴Vulnerability Details

GHSA

actionpack Improper Input Validation vulnerability↗2017-10-24

▶

OSV

actionpack Improper Input Validation vulnerability↗2017-10-24

▶

CVEList

CVE-2011-2929: The template selection functionality in actionpack/lib/action_view/template/resolver↗2011-08-29

▶

📋Vendor Advisories

Debian

CVE-2011-2929: rails - The template selection functionality in actionpack/lib/action_view/template/reso...↗2011

▶

💬Community

Bugzilla

CVE-2011-2929 rubygem-actionpack: filter skipping vulnerability (Ruby on Rails)↗2011-08-17

▶