Lucene search
+L

7 matches found

nvd
nvd
added 2024/08/23 3:15 p.m.29 views

CVE-2024-43791

RequestStore provides per-request global storage for Rack. The files published as part of requeststore 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production environments do not...

7.8CVSS0.00194EPSS
Exploits0References1
ubuntucve
ubuntucve
added 2024/08/23 3:15 p.m.15 views

CVE-2024-43791

RequestStore provides per-request global storage for Rack. The files published as part of requeststore 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production environments do not...

7.8CVSS7.1AI score0.00194EPSS
Exploits0References2
cve
cve
added 2024/08/23 2:39 p.m.66 views

CVE-2024-43791

CVE-2024-43791 affects the RequestStore rack integration. The 1.3.2 release creates world-writable files (0666), enabling local users to execute arbitrary code due to global permission issues. Public sources confirm this is a permission misconfiguration in RequestStore 1.3.2, published in 2017, a...

7.8CVSS7.8AI score0.00194EPSS
Exploits0References1Affected Software1
vulnrichment
vulnrichment
added 2024/08/23 2:39 p.m.18 views

CVE-2024-43791 RequestStore has Incorrect Default Permissions

RequestStore provides per-request global storage for Rack. The files published as part of requeststore 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production environments do not...

7.8CVSS7.3AI score0.00194EPSS
Exploits0References1
debiancve
debiancve
added 2024/08/23 2:39 p.m.53 views

CVE-2024-43791

RequestStore provides per-request global storage for Rack. The files published as part of requeststore 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production environments do not...

7.8CVSS7.9AI score0.00194EPSS
Exploits0
cvelist
cvelist
added 2024/08/23 2:39 p.m.38 views

CVE-2024-43791 RequestStore has Incorrect Default Permissions

RequestStore provides per-request global storage for Rack. The files published as part of requeststore 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production environments do not...

7.8CVSS0.00194EPSS
Exploits0References1
osv
osv
added 2024/08/23 2:39 p.m.22 views

CVE-2024-43791 RequestStore has Incorrect Default Permissions

RequestStore provides per-request global storage for Rack. The files published as part of requeststore 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production environments do not...

7.8CVSS7.5AI score0.00194EPSS
Exploits0References3
Rows per page
Query Builder