Open Redirect Vulnerability in Action Pack by Rails
CVE-2021-44528

6.1MEDIUM

Key Information:

Vendor: Rubyonrails
Status: Https://github.com/rails/rails
Vendor: CVE Published:; 10 January 2022

🔔 Create Rubyonrails Vulnerability Alert

What is CVE-2021-44528?

An open redirect vulnerability has been identified in Action Pack versions equal to or greater than 6.0.0. The issue arises from improper handling of the 'X-Forwarded-Host' header, enabling attackers to craft certain header values which can lead to unauthorized host redirections. This flaw allows users to be redirected to malicious websites, posing a significant risk as it can be exploited to facilitate phishing or distribute malware.

Affected Version(s)

https://github.com/rails/rails 6.1.4.2, 6.0.4.2, 7.0.0.rc2

References

https://github.com/rails/rails/commit/0fccfb9a3097a9c4260...

https://www.debian.org/security/2023/dsa-5372

vendor-advisory

https://security.netapp.com/advisory/ntap-20240208-0003/

EPSS Score

26% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 10, 2022
Vulnerability Reserved
Dec 2, 2021