CVE-2024-47887 | Actionpack Gem on Ruby Action Controller redos

Posted by Angelo Barbosa | Oct 16, 2024 | CVE

A vulnerability was found in Actionpack Gem on Ruby. It has been classified as critical. Affected is an unknown function of the component Action Controller. The manipulation leads to inefficient regular expression complexity.

This vulnerability is traded as CVE-2024-47887. The attack can only be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-47887 | Actionpack Gem on Ruby Action Controller redos

Related Posts

CVE-2024-33808 | campcodes Complete Web-Based School Management System 1.0 /model/get_timetable.php id sql injection

CVE-2023-6706 | Google Chrome prior 120.0.6099.109 FedCM use after free

CVE-2024-23848 | Linux Kernel up to 6.7.1 cec-adap.c cec_queue_msg_fh use after free

CVE-2024-29200 | Kimai up to 2.12.x API insufficient granularity of access control