CVE-2024-43791Incorrect Default Permissions in Request Store

CWE-276Incorrect Default Permissions6 documents5 sources
Severity
7.8HIGHNVD
EPSS
0.1%
top 81.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Steveklabnik Request StoreDebian Ruby-request-store
Timeline
PublishedAug 23

Description

RequestStore provides per-request global storage for Rack. The files published as part of request_store 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production environments do not allow access for local users, so the chances of this being exploited are very low, given that the vast majority of users will have upgraded, and those that have not, if any, are not likely to be expose

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages4 packages

RubyGemssteveklabnik/request_store1.3.21.4.0
CVEListV5steveklabnik/request_store= 1.3.2

🔴Vulnerability Details

3
OSV
request_store has Incorrect Default Permissions2024-08-23
OSV
CVE-2024-43791: RequestStore provides per-request global storage for Rack2024-08-23
GHSA
request_store has Incorrect Default Permissions2024-08-23

📋Vendor Advisories

2
Red Hat
RequestStore: Incorrect Default Permissions in request_store 1.3.22024-08-23
Debian
CVE-2024-43791: ruby-request-store - RequestStore provides per-request global storage for Rack. The files published a...2024