CSRF Forgery Vulnerability in Ruby on Rails by Basecamp
CVE-2020-8166

4.3MEDIUM

Key Information:

Vendor

Rubyonrails

Status
Https://github.com/rails/rails
Vendor
CVE Published:
2 July 2020

What is CVE-2020-8166?

A Cross-Site Request Forgery (CSRF) vulnerability exists in specific versions of Ruby on Rails prior to 5.2.5 and 6.0.4. This flaw leverages the global CSRF token included in the authenticity_token meta tag, allowing attackers to forge per-form CSRF tokens. As a result, unauthorized actions may be executed on behalf of a legitimate user without their consent, posing a risk to web applications leveraging affected versions of this framework.

Affected Version(s)

https://github.com/rails/rails Fixed in 5.2.4.3, 6.0.3.1

References

https://hackerone.com/reports/732415
x_refsource_MISC
https://groups.google.com/g/rubyonrails-security/c/NOjKiG...
x_refsource_MISC
https://www.debian.org/security/2020/dsa-4766
vendor-advisoryx_refsource_DEBIAN

CVSS V3.1

Score:
4.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.