There is a possible information disclosure issue in Active Resource <v5.1.1 that could allow an attacker to create specially crafted requests to access data in an unexpected way and possibly leak information.
github.com/rails/activeresource
github.com/rails/activeresource/commit/0de18f7e96fa90bbf23b16ac11980bc2cb6a716e
groups.google.com/forum/#!topic/rubyonrails-security/pktoF4VmiM8
lists.fedoraproject.org/archives/list/[email protected]/message/P7B7A4H22DZ522HLDS3JX3NX2CXIOZSR
nvd.nist.gov/vuln/detail/CVE-2020-8151