Database-query Authentication Bypass

2019-01-1508:53:36

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.003 Low

EPSS

Percentile

71.3%

JSON

actionpack/lib/action_dispatch/http/request.rb in Ruby on Rails before 3.0.13, 3.1.x before 3.1.5, and 3.2.x before 3.2.4 does not properly consider differences in parameter handling between the Active Record component and the Rack interface, which allows remote attackers to bypass intended database-query restrictions and perform NULL checks via a crafted request, as demonstrated by certain nil values, a related issue to CVE-2012-2694.

CPENameOperatorVersion
rubygem-actionpackeq3.0.10__3.1.el6
rubygem-actionpackeq3.0.13__2.el6op
rubygem-actionpackeq3.0.10__11.el6cf
rubygem-actionpackeq3.0.13__2.1.el6op
rubygem-actionpackeq3.0.10__1.el6
rubygem-activerecordeq3.0.10__2.el6
rubygem-activerecordeq3.0.10__3.el6
rubygem-activerecordeq3.0.13__3.el6op
rubygem-activerecordeq3.0.10__8.el6cf
rubygem-activerecordeq3.0.13__2.el6op

Name	Operator	Version
rubygem-actionpack	eq	3.0.10__3.1.el6
rubygem-actionpack	eq	3.0.13__2.el6op
rubygem-actionpack	eq	3.0.10__11.el6cf
rubygem-actionpack	eq	3.0.13__2.1.el6op
rubygem-actionpack	eq	3.0.10__1.el6
rubygem-activerecord	eq	3.0.10__2.el6
rubygem-activerecord	eq	3.0.10__3.el6
rubygem-activerecord	eq	3.0.13__3.el6op
rubygem-activerecord	eq	3.0.10__8.el6cf
rubygem-activerecord	eq	3.0.13__2.el6op