SQL Injection Vulnerability in PostgreSQL Adapter for Ruby on Rails
CVE-2014-3483

Currently unrated

Key Information:

Vendor

Rubyonrails

Status
Rails
Vendor
CVE Published:
7 July 2014

What is CVE-2014-3483?

This vulnerability allows remote attackers to exploit improper range quoting in the PostgreSQL adapter for Active Record in Ruby on Rails, enabling execution of arbitrary SQL commands. This could lead to unauthorized data access and manipulation, posing a significant risk to applications utilizing affected versions of the framework.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://rhn.redhat.com/errata/RHSA-2014-0877.html
vendor-advisoryx_refsource_REDHAT
http://secunia.com/advisories/59971
third-party-advisoryx_refsource_SECUNIA
http://openwall.com/lists/oss-security/2014/07/02/5
mailing-listx_refsource_MLIST

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.