Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-23633

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Action Pack is a framework for handling and responding to web requests. Under certain circumstances response bodies will not be closed. In the event a response ...

7.4CVSS6.3AI score0.02207EPSS
Exploits0References2
OSV
OSV
added 2024/07/05 11:8 a.m.4 views

OESA-2024-1810 rubygem-actionpack security update

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling easy unit/integration testing that doesn't require a browser. Security Fixes: Action Pack is a framework for handling and responding to web requests. Und...

7.4CVSS6.6AI score0.02207EPSS
Exploits0References2
OSV
OSV
added 2024/06/28 11:8 a.m.4 views

OESA-2024-1762 rubygem-activesupport security update

A toolkit of support libraries and Ruby core extensions extracted from the Rails framework. Rich support for multibyte strings, internationalization, time zones, and testing. Security Fixes: Action Pack is a framework for handling and responding to web requests. Under certain circumstances respon...

7.4CVSS6.7AI score0.02207EPSS
Exploits0References2
Debian
Debian
added 2023/03/13 3:6 a.m.105 views

[SECURITY] [DSA 5372-1] rails security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5372-1 [email protected] https://www.debian.org/security/ Aron Xu March 13, 2023 https://www.debian.org/security/faq - -------------------------------------------------------------------------...

9.8CVSS7.8AI score0.04182EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2022/07/05 2:41 p.m.578 views

Moderate: Red Hat Security Advisory: Satellite 6.11 Release

An update is now available for Red Hat Satellite 6.11 Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Security Fixes: libsolv: Heap-based buff...

9.8CVSS7.6AI score0.49246EPSS
Exploits14References476
Tenable Nessus
Tenable Nessus
added 2022/06/17 12:0 a.m.65 views

SUSE SLES15 Security Update : rubygem-actionpack-5_1, rubygem-activesupport-5_1 (SUSE-SU-2022:2108-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2108-1 advisory. - The actionpack ruby gem before 6.1.3.2, 6.0.3.7, 5.2.4.6, 5.2.6 suffers from a possible denial of service vulnerability in the...

7.5CVSS7.3AI score0.04808EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2022/02/21 12:0 a.m.23 views

Ruby on Rails Information Disclosure Vulnerability (GHSA-wh98-p28r-vrc9) - Windows

Ruby on Rails is prone to an information disclosure vulnerability in Action Pack. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progr...

7.4CVSS5.9AI score0.02207EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/02/11 9:15 p.m.9 views

CVE-2022-23633

Action Pack is a framework for handling and responding to web requests. Under certain circumstances response bodies will not be closed. In the event a response is not notified of a close, ActionDispatch::Executor will not know to reset thread local state for the next request. This can lead to dat...

7.4CVSS6.3AI score0.02207EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2022/02/11 12:0 a.m.219 views

CVE-2022-23633

CVE-2022-23633 (Rails Action Pack) : Under certain circumstances, response bodies could remain unclosed, causing ActionDispatch::Executor to fail to reset thread-local state between requests and potentially leak data to subsequent requests. This affects Rails Action Pack components used to handle...

7.4CVSS6.3AI score0.02207EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2022/02/11 12:0 a.m.46 views

CVE-2022-23633 Exposure of sensitive information in Action Pack

Action Pack is a framework for handling and responding to web requests. Under certain circumstances response bodies will not be closed. In the event a response is not notified of a close, ActionDispatch::Executor will not know to reset thread local state for the next request. This can lead to dat...

7.4CVSS7.6AI score0.02207EPSS
Exploits0References6
Rows per page
Query Builder