Lucene search
HackeroneCVELIST:CVE-2021-22904HistoryJun 11, 2021 - 3:49 p.m.
CVE-2021-22904
2021-06-1115:49:38
CWE-400
hackerone
raw.githubusercontent.com
3
The actionpack ruby gem before 6.1.3.2, 6.0.3.7, 5.2.4.6, 5.2.6 suffers from a possible denial of service vulnerability in the Token Authentication logic in Action Controller due to a too permissive regular expression. Impacted code uses authenticate_or_request_with_http_token or authenticate_with_http_token for request authentication.
Related
veracode
veracode
Denial Of Service (DoS)
2021-05-06 06:23:48
osv
osv
CVE-2021-22904
2021-06-11 16:15:11
Possible DoS Vulnerability in Action Controller Token Authentication
2021-05-05 19:49:12
rails - security update
2021-05-12 00:00:00
prion
prion
Authentication flaw
2021-06-11 16:15:00
cve
cve
CVE-2021-22904
2021-06-11 16:15:00
github
github
Possible DoS Vulnerability in Action Controller Token Authentication
2021-05-05 19:49:12
ubuntucve
ubuntucve
CVE-2021-22904
2021-06-11 00:00:00
redhatcve
redhatcve
CVE-2021-22904
2021-05-19 00:25:31
debiancve
debiancve
CVE-2021-22904
2021-06-11 16:15:00
rubygems
rubygems
Possible DoS Vulnerability in Action Controller Token Authentication
2021-05-04 21:00:00
ibm
ibm
nessus
nessus
SUSE SLES15 Security Update : rubygem-actionpack-5_1, rubygem-activesupport-5_1 (SUSE-SU-2022:2108-1)
2022-06-17 00:00:00
Debian DLA-2655-1 : rails security update
2021-05-12 00:00:00
Debian DSA-4929-1 : rails - security update
2021-06-11 00:00:00
suse
suse
openvas
openvas
Debian: Security Advisory (DLA-2655-1)
2021-05-12 00:00:00
Debian: Security Advisory (DSA-4929-1)
2021-06-11 00:00:00
debian
debian
[SECURITY] [DLA 2655-1] rails security update
2021-05-11 20:53:02
[SECURITY] [DSA 4929-1] rails security update
2021-06-09 21:11:49
freebsd
freebsd
Rails -- multiple vulnerabilities
2021-05-05 00:00:00
redhat
redhat
(RHSA-2021:4702) Moderate: Satellite 6.10 Release
2021-11-16 13:58:57