CVE-2016-2098
60Vexday Risk Score
Corrige pronto. Ella tiene exploit funcional público.
ssvc Attendepss 81%
de la publicación al arma0 días
Publicada en NVD7 abr
1ª PoC1 mar
metasploit1 mar
probabilidad de explotación
81%top 1% de las CVE
explotación observada
noninguna fuente lo reporta
14 exploit(s) público(s)
Action Pack in Ruby on Rails before 3.2.22.2, 4.x before 4.1.14.2, and 4.2.x before 4.2.5.2 allows remote attackers to execute arbitrary Ruby code by leveraging an application's unrestricted use of the render method.
Productos afectados
n/a · n/aPoCs públicas encontradas — 14
githubgithub.com/0x00-0x00/CVE-2016-2098★ 16githubgithub.com/j4k0m/CVE-2016-2098★ 4githubgithub.com/hderms/dh-CVE_2016_2098★ 3githubgithub.com/DanielHemmati/CVE-2016-2098-my-first-exploit★ 2githubgithub.com/Shakun8/CVE-2016-2098★ 2githubgithub.com/CyberDefenseInstitute/PoC_CVE-2016-2098_Rails42★ 1githubgithub.com/Alejandro-MartinG/rails-PoC-CVE-2016-2098★ 1githubgithub.com/its-arun/CVE-2016-2098★ 1githubgithub.com/3rg1s/CVE-2016-2098★ 0githubgithub.com/JoseLRC97/Ruby-on-Rails-ActionPack-Inline-ERB-Remote-Code-Execution★ 0githubgithub.com/sealldeveloper/CVE-2016-2098-PoC★ 0githubgithub.com/Debalinax64/CVE-2016-2098★ 0exploitdbwww.exploit-db.com/exploits/40086no verificadocve_referencewww.exploit-db.com/exploits/40086/no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
Referencias
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00057.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-03/msg00080.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-03/msg00083.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-03/msg00086.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-04/msg00006.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-04/msg00053.htmlhttps://groups.google.com/forum/message/raw?msg=rubyonrails-security/ly-IH-fxr_Q/WLoOhcMZIAAJhttps://www.exploit-db.com/exploits/40086/http://weblog.rubyonrails.org/2016/2/29/Rails-4-2-5-2-4-1-14-2-3-2-22-2-have-been-released/http://www.debian.org/security/2016/dsa-3509http://www.securityfocus.com/bid/83725http://www.securitytracker.com/id/1035122