Lucene search
FedoraFEDORA:8A3C26042808HistoryMay 10, 2019 - 12:48 a.m.
[SECURITY] Fedora 30 Update: rubygem-activerecord-5.2.3-1.fc30
2019-05-1000:48:41
lists.fedoraproject.org
16
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
Implements the ActiveRecord pattern (Fowler, PoEAA) for ORM. It ties databa se tables and classes together for business objects, like Customer or Subscription, that can find, save, and destroy themselves without resorting to manual SQL.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Fedora | 30 | any | rubygem-activerecord | < 5.2.3 | UNKNOWN |
Related
fedora
fedora
[SECURITY] Fedora 30 Update: rubygem-actioncable-5.2.3-1.fc30
2019-05-10 00:48:40
[SECURITY] Fedora 30 Update: rubygem-activemodel-5.2.3-2.fc30
2019-05-10 00:48:41
[SECURITY] Fedora 30 Update: rubygem-rails-5.2.3-1.fc30
2019-05-10 00:48:41
openvas
openvas
Fedora Update for rubygem-actionview FEDORA-2019-1cfe24db5c
2019-05-10 00:00:00
Fedora Update for rubygem-railties FEDORA-2019-1cfe24db5c
2019-05-10 00:00:00
Discourse < 2.3.0.beta5 Multiple Vulnerabilities
2019-06-17 00:00:00
githubexploit
githubexploit
Exploit for Vulnerability in Rubyonrails Rails
2019-03-23 02:52:31
Exploit for Vulnerability in Rubyonrails Rails
2019-03-16 11:58:18
Exploit for Use of Insufficiently Random Values in Rubyonrails Rails
2019-03-27 18:16:46
nessus
nessus
Fedora 30 : 1:rubygem-actionmailer / 1:rubygem-actionpack / etc (2019-1cfe24db5c)
2019-05-10 00:00:00
openSUSE Security Update : rubygem-actionpack-5_1 (openSUSE-2019-1344)
2019-05-09 00:00:00
Debian DLA-1739-1 : rails security update
2019-04-01 00:00:00
canvas
canvas
Immunity Canvas: RAILS_ACTIVESTORAGE_RCE
2019-03-27 14:29:00
Immunity Canvas: RAILS_ACCEPT_READFILE
2019-03-27 14:29:00
suse
suse
Security update for rubygem-actionpack-5_1 (moderate)
2019-05-08 00:00:00
Security update for rmt-server (important)
2019-08-01 00:00:00
Security update for rmt-server (important)
2019-06-07 00:00:00
debian
debian
[SECURITY] [DLA 1739-1] rails security update
2019-03-31 13:51:06
osv
osv
rails - security update
2019-03-30 00:00:00
Denial of Service Vulnerability in Action View
2019-03-13 17:25:55
Use of Insufficiently Random Values in Railties Allows Remote Code Execution
2019-03-13 17:28:35
freebsd
freebsd
Rails -- Action View vulnerabilities
2019-03-13 00:00:00
github
github
Denial of Service Vulnerability in Action View
2019-03-13 17:25:55
Use of Insufficiently Random Values in Railties Allows Remote Code Execution
2019-03-13 17:28:35
Path Traversal in Action View
2019-03-13 17:26:59
redhat
redhat
(RHSA-2019:1149) Important: rh-ror42-rubygem-actionpack security update
2019-05-13 08:53:04
(RHSA-2019:1289) Important: CloudForms 4.6.9 security, bug fix and enhancement update
2019-05-29 12:36:40
(RHSA-2019:1147) Important: rh-ror50-rubygem-actionpack security update
2019-05-13 08:36:21
checkpoint_advisories
checkpoint_advisories
Ruby on Rails Active Storage Insecure Deserialization (CVE-2019-5420)
2019-06-26 00:00:00
Rails Action View Information Disclosure (CVE-2019-5418)
2020-07-29 00:00:00
redhatcve
redhatcve
prion
prion
Design/Logic Flaw
2019-03-27 14:29:00
Denial of service
2019-03-27 14:29:00
Remote code execution
2019-03-27 14:29:00
metasploit
metasploit
Ruby On Rails File Content Disclosure ('doubletap')
2019-03-28 01:13:25
Ruby On Rails DoubleTap Development Mode secret_key_base Vulnerability
2019-04-25 19:30:46
debiancve
debiancve
packetstorm
packetstorm
Rails 5.2.1 Arbitrary File Content Disclosure
2019-03-21 00:00:00
gitlab
gitlab
Allocation of Resources Without Limits or Throttling
2019-03-27 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2019-03-14 02:16:39
Information Disclosure
2019-03-14 02:43:15
Denial Of Service (DoS)
2019-03-14 03:23:36
hackerone
hackerone
ubuntucve
ubuntucve
rapid7blog
rapid7blog
[Security Nation] Jeremi Gosney on the Psychology of Password Hygiene
2022-10-26 18:05:14
cve
cve
zdt
zdt
Rails 5.2.1 - Arbitrary File Content Disclosure Exploit
2019-03-24 00:00:00
attackerkb
attackerkb
Ruby on Rails 5.2 "DoubleTap" Directory Traversal
2019-03-27 00:00:00
Ruby on Rails DoubleTap Development Mode secret_key_base Vulnerability
2019-03-27 00:00:00
exploitpack
exploitpack
Rails 5.2.1 - Arbitrary File Content Disclosure
2019-03-21 00:00:00
ibm
ibm
dsquare
dsquare
Rails File Disclosure
2019-03-28 00:00:00
nuclei
nuclei
Rails File Content Disclosure
2020-04-08 15:07:10
rubygems
rubygems
Denial of Service Vulnerability in Action View
2019-03-12 21:00:00
Possible Remote Code Execution Exploit in Rails Development Mode
2019-03-12 21:00:00
File Content Disclosure in Action View
2019-03-12 21:00:00
exploitdb
exploitdb
Ruby On Rails - DoubleTap Development Mode secret_key_base Remote Code Execution (Metasploit)
2019-05-02 00:00:00
Rails 5.2.1 - Arbitrary File Content Disclosure
2019-03-21 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
Related for FEDORA:8A3C26042808