Lucene search
K

7 matches found

NVD
NVD
added 2024/08/23 3:15 p.m.29 views

CVE-2024-43791

RequestStore provides per-request global storage for Rack. The files published as part of requeststore 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production environments do not...

7.8CVSS0.00194EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/08/23 3:15 p.m.15 views

CVE-2024-43791

RequestStore provides per-request global storage for Rack. The files published as part of requeststore 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production environments do not...

7.8CVSS7.1AI score0.00194EPSS
Exploits0References2
CVE
CVE
added 2024/08/23 2:39 p.m.66 views

CVE-2024-43791

CVE-2024-43791 affects the RequestStore rack integration. The 1.3.2 release creates world-writable files (0666), enabling local users to execute arbitrary code due to global permission issues. Public sources confirm this is a permission misconfiguration in RequestStore 1.3.2, published in 2017, a...

7.8CVSS7.8AI score0.00194EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/08/23 2:39 p.m.18 views

CVE-2024-43791 RequestStore has Incorrect Default Permissions

RequestStore provides per-request global storage for Rack. The files published as part of requeststore 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production environments do not...

7.8CVSS7.3AI score0.00194EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/23 2:39 p.m.34 views

CVE-2024-43791 RequestStore has Incorrect Default Permissions

RequestStore provides per-request global storage for Rack. The files published as part of requeststore 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production environments do not...

7.8CVSS0.00194EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/08/23 2:39 p.m.39 views

CVE-2024-43791

RequestStore provides per-request global storage for Rack. The files published as part of requeststore 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production environments do not...

7.8CVSS7.9AI score0.00194EPSS
Exploits0
OSV
OSV
added 2024/08/23 2:39 p.m.22 views

CVE-2024-43791 RequestStore has Incorrect Default Permissions

RequestStore provides per-request global storage for Rack. The files published as part of requeststore 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production environments do not...

7.8CVSS7.5AI score0.00194EPSS
Exploits0References3
Rows per page
Query Builder