Remote Code Execution Vulnerability in Ruby on Rails Action Pack
CVE-2016-2098

7.3HIGH

Key Information:

Vendor
Debian
Status
Debian Linux
Vendor
CVE Published:
7 April 2016

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 86%

Summary

A vulnerability in Action Pack of Ruby on Rails allows remote attackers to execute arbitrary Ruby code due to unrestricted use of the render method. This can happen when the application fails to properly sanitize user input before rendering, enabling attackers to manipulate the application’s runtime environment. Versions 3.2 before 3.2.22.2, 4.x before 4.1.14.2, and 4.2.x before 4.2.5.2 are particularly susceptible to this security flaw, making it crucial for developers to upgrade to the latest, patched versions to mitigate potential attack vectors.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2016-2098
Created by 0x00-0x00

CVE-2016-2098
Created by Shakun8

dh-CVE_2016_2098
Created by hderms

References

http://lists.opensuse.org/opensuse-security-announce/2016...
vendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2016...
vendor-advisoryx_refsource_SUSE
http://www.debian.org/security/2016/dsa-3509
vendor-advisoryx_refsource_DEBIAN

EPSS Score

86% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
7.3
Severity:
HIGH
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • 🟡

    Public PoC available

  • Vulnerability published

  • 👾

    Exploit known to exist

  • Vulnerability Reserved

.