CVE-2024-41128 | Actionpack Gem on Ruby Action Dispatch redos

Inserito da Angelo Barbosa | Ott 16, 2024 | CVE

A vulnerability has been found in Actionpack Gem on Ruby and classified as problematic. This vulnerability affects unknown code of the component Action Dispatch. The manipulation leads to inefficient regular expression complexity.

This vulnerability was named CVE-2024-41128. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-41128 | Actionpack Gem on Ruby Action Dispatch redos

Post correlati

CVE-2024-1945 | ARForms Form Builder Plugin up to 1.6.4 on WordPress Option authorization

CVE-2024-38903 | H3C Magic R230 V100R002 Service Port 9034 Privilege Escalation

CVE-2024-5262 | ProjectDiscovery Interactsh up to 1.1.9 file access

CVE-2024-0802 | Mitsubishi Electric MELSEC-Q/MELSEC-L Packet incorrect pointer scaling (icsa-24-074-14)