Homepage
About Snyk

Unsafe Query Generation Risk Affecting actionpack package, versions < 4.0.2, >= 3.3 < 3.2.16

Severity

 Recommended
0.0
medium
0
10

CVSS assessment made by Snyk's Security Team

    Threat Intelligence

    EPSS
    0.52% (78th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk ID SNYK-RUBY-ACTIONPACK-20125
  • published 2 Dec 2013
  • disclosed 2 Dec 2013
  • credit Sudhir Rao
Report a new vulnerability Found a mistake?

Introduced: 2 Dec 2013

CVE-2013-6417 Open this link in a new tab
CWE-943 Open this link in a new tab

Overview

actionpack is a web app builder and tester on Rails. Affected versions of this Gem are vulnerable to Unsafe Query Generation Risk.

The prior fix to CVE-2013-0155 was incomplete, and some 3rd party libraries can accidentally circumvent the protection.

Details

It is possible for a 3rd party or custom rack middleware to parse the parameters insecurely and store them in the same key that Rails uses for its own parameters. This is due to the way that Rack::Request and Rails::Request interact.

If this happens, the application will receive unsafe parameters and could be vulnerable to the earlier vulnerability.

CVSS Scores

version 3.1
Expand this section

Snyk

Recommended
6.5 medium
  • Attack Vector (AV)
    Network
  • Attack Complexity (AC)
    Low
  • Privileges Required (PR)
    None
  • User Interaction (UI)
    None
  • Scope (S)
    Unchanged
  • Confidentiality (C)
    Low
  • Integrity (I)
    Low
  • Availability (A)
    None
Expand this section

NVD

6.5 medium
Expand this section

Red Hat

6.5 medium