Lucene search
Https://gitlab.com/gitlab-org/security-products/gemnasium-dbGITLAB-D9EC047D1A340F526A72A7981C65FA07HistoryDec 07, 2013 - 12:00 a.m.
Improper Input Validation
2013-12-0700:00:00
https://gitlab.com/gitlab-org/security-products/gemnasium-db
gitlab.com
21
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.19 Low
EPSS
Percentile
95.5%
actionpack/lib/action_view/lookup_context.rb in Action View in Ruby on Rails allows remote attackers to cause a denial of service (memory consumption) via a header containing an invalid MIME type that leads to excessive caching.
| CPE | Name | Operator | Version |
|---|---|---|---|
| gem/actionpack | lt | 3.2.16 | |
| gem/actionpack | ge | 4.0 | |
| gem/actionpack | lt | 4.0.2 |
References
Related
osv
osv
actionpack Improper Input Validation vulnerability
2017-10-24 18:33:37
github
github
actionpack Improper Input Validation vulnerability
2017-10-24 18:33:37
prion
prion
Code injection
2013-12-07 00:55:00
ubuntucve
ubuntucve
CVE-2013-6414
2013-12-07 00:00:00
debiancve
debiancve
CVE-2013-6414
2013-12-07 00:55:00
cve
cve
CVE-2013-6414
2013-12-07 00:55:00
fedora
fedora
[SECURITY] Fedora 19 Update: rubygem-actionpack-3.2.13-4.fc19
2014-01-24 07:50:26
[SECURITY] Fedora 20 Update: rubygem-actionpack-4.0.0-3.fc20
2014-03-11 04:00:14
[SECURITY] Fedora 20 Update: rubygem-actionpack-4.0.0-2.fc20
2014-03-07 06:36:05
nessus
nessus
debian
debian
[SECURITY] [DSA 2888-1] ruby-actionpack-3.2 security update
2014-03-27 15:04:16
openvas
openvas
Debian: Security Advisory (DSA-2888-1)
2014-03-26 00:00:00
Debian Security Advisory DSA 2888-1 (ruby-actionpack-3.2 - security update)
2014-03-27 00:00:00
Fedora Update for rubygem-actionpack FEDORA-2014-0970
2014-01-27 00:00:00
securityvulns
securityvulns
Ruby Actionpack / Actionmailer multiple security vulnerabilities
2014-05-04 00:00:00
[SECURITY] [DSA 2888-1] ruby-actionpack-3.2 security update
2014-05-04 00:00:00
redhat
redhat
(RHSA-2013:1794) Important: ruby193-rubygem-actionpack security update
2013-12-05 00:00:00
(RHSA-2014:0008) Important: ruby193-rubygem-actionpack security update
2014-01-06 00:00:00
(RHSA-2014:1863) Important: Subscription Asset Manager 1.4 security update
2014-11-17 00:00:00
freebsd
freebsd
rails -- multiple vulnerabilities
2013-12-03 00:00:00
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.19 Low
EPSS
Percentile
95.5%
Related for GITLAB-D9EC047D1A340F526A72A7981C65FA07