Https Github.Com Rails Rails vulnerabilities

27 known vulnerabilities affecting https/github.com_rails_rails.

Total CVEs

27

CISA KEV

0

Public exploits

3

Exploited in wild

0

Severity breakdown

CRITICAL3HIGH13MEDIUM11

Vulnerabilities

Page 2 of 2

CVE-2020-8166MEDIUMCVSS 4.3vFixed in 5.2.4.3, 6.0.3.12020-07-02

CVE-2020-8166 [MEDIUM] CWE-352 CVE-2020-8166: A CSRF forgery vulnerability exists in rails < 5.2.5, rails < 6.0.4 that makes it possible for an at A CSRF forgery vulnerability exists in rails < 5.2.5, rails < 6.0.4 that makes it possible for an attacker to, given a global CSRF token such as the one present in the authenticity_token meta tag, forge a per-form CSRF token.

CVE-2020-8185MEDIUMCVSS 6.5vFixed in 6.0.3.22020-07-02

CVE-2020-8185 [MEDIUM] CWE-400 CVE-2020-8185: A denial of service vulnerability exists in Rails <6.0.3.2 that allowed an untrusted user to run any A denial of service vulnerability exists in Rails <6.0.3.2 that allowed an untrusted user to run any pending migrations on a Rails app running in production.

CVE-2020-8165CRITICALCVSS 9.8vFixed in 5.2.4.3, 6.0.3.12020-06-19

CVE-2020-8165 [CRITICAL] CWE-502 CVE-2020-8165: A deserialization of untrusted data vulnernerability exists in rails < 5.2.4.3, rails < 6.0.3.1 that A deserialization of untrusted data vulnernerability exists in rails < 5.2.4.3, rails < 6.0.3.1 that can allow an attacker to unmarshal user-provided objects in MemCacheStore and RedisCacheStore potentially resulting in an RCE.

CVE-2020-8162HIGHCVSS 7.5vrails >= 5.2.4.3, rails >= 6.0.3.12020-06-19

CVE-2020-8162 [HIGH] CWE-602 CVE-2020-8162: A client side enforcement of server side security vulnerability exists in rails < 5.2.4.2 and rails A client side enforcement of server side security vulnerability exists in rails < 5.2.4.2 and rails < 6.0.3.1 ActiveStorage's S3 adapter that allows the Content-Length of a direct file upload to be modified by an end user bypassing upload limits.

CVE-2020-8164HIGHCVSS 7.5v5.2.4.3, 6.0.3.12020-06-19

CVE-2020-8164 [HIGH] CWE-502 CVE-2020-8164: A deserialization of untrusted data vulnerability exists in rails < 5.2.4.3, rails < 6.0.3.1 which c A deserialization of untrusted data vulnerability exists in rails < 5.2.4.3, rails < 6.0.3.1 which can allow an attacker to supply information can be inadvertently leaked fromStrong Parameters.

CVE-2018-16476HIGHCVSS 7.5v4.2.0 up to and before 4.2.11v4.2.0 up to and before 5.0.7.1+2 more2018-11-30

CVE-2018-16476 [HIGH] CWE-284 CVE-2018-16476: A Broken Access Control vulnerability in Active Job versions >= 4.2.0 allows an attacker to craft us A Broken Access Control vulnerability in Active Job versions >= 4.2.0 allows an attacker to craft user input which can cause Active Job to deserialize it using GlobalId and give them access to information that they should not have. This vulnerability has been fixed in versions 4.2.11, 5.0.7.1, 5.1.6.1, and 5.2.1.1.

CVE-2018-16477MEDIUMCVSS 6.5v5.2.0 and later and before 5.2.1.12018-11-30

CVE-2018-16477 [MEDIUM] CWE-200 CVE-2018-16477: A bypass vulnerability in Active Storage >= 5.2.0 for Google Cloud Storage and Disk services allow a A bypass vulnerability in Active Storage >= 5.2.0 for Google Cloud Storage and Disk services allow an attacker to modify the `content-disposition` and `content-type` parameters which can be used in with HTML files and have them executed inline. Additionally, if combined with other techniques such as cookie bombing and specially crafted AppCache mani

← Previous2 / 2