CVE-2011-2197

The cross-site scripting (XSS) prevention feature in Ruby on Rails 2.x before 2.3.12, 3.0.x before 3.0.8, and 3.1.x before 3.1.0.rc2 does not properly handle mutation of safe buffers, which makes it easier for remote attackers to conduct XSS attacks via crafted strings to an application that uses a problematic string method, as demonstrated by the sub method.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
redhatCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 62%
VendorProductVersion
rubyonrailsrails
2.0.0
rubyonrailsrails
2.0.0:rc1
rubyonrailsrails
2.0.0:rc2
rubyonrailsrails
2.0.1
rubyonrailsrails
2.0.2
rubyonrailsrails
2.0.4
rubyonrailsrails
2.1.0
rubyonrailsrails
2.1.1
rubyonrailsrails
2.1.2
rubyonrailsrails
2.2.0
rubyonrailsrails
2.2.1
rubyonrailsrails
2.2.2
rubyonrailsrails
2.3.2
rubyonrailsrails
2.3.3
rubyonrailsrails
2.3.4
rubyonrailsrails
2.3.9
rubyonrailsrails
2.3.10
rubyonrailsrails
2.3.11
rubyonrailsrails
3.0.0
rubyonrailsrails
3.0.0:beta
rubyonrailsrails
3.0.0:beta2
rubyonrailsrails
3.0.0:beta3
rubyonrailsrails
3.0.0:beta4
rubyonrailsrails
3.0.0:rc
rubyonrailsrails
3.0.0:rc2
rubyonrailsrails
3.0.1
rubyonrailsrails
3.0.1:pre
rubyonrailsrails
3.0.2
rubyonrailsrails
3.0.2:pre
rubyonrailsrails
3.0.3
rubyonrailsrails
3.0.4:rc1
rubyonrailsrails
3.0.5
rubyonrailsrails
3.0.5:rc1
rubyonrailsrails
3.0.6
rubyonrailsrails
3.0.6:rc1
rubyonrailsrails
3.0.6:rc2
rubyonrailsrails
3.0.7
rubyonrailsrails
3.0.7:rc1
rubyonrailsrails
3.0.7:rc2
rubyonrailsrails
3.0.8:rc1
rubyonrailsrails
3.0.8:rc2
rubyonrailsrails
3.0.8:rc3
rubyonrailsrails
3.0.8:rc4
rubyonrailsruby_on_rails
3.0.4
rubyonrailsrails
3.1.0
rubyonrailsrails
3.1.0:beta1
rubyonrailsrails
3.1.0:rc1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
rails
bullseye (security)
2:6.0.3.7+dfsg-2+deb11u2
fixed
bullseye
2:6.0.3.7+dfsg-2+deb11u2
fixed
bookworm
2:6.1.7.3+dfsg-2~deb12u1
fixed
sid
2:6.1.7.3+dfsg-4
fixed
trixie
2:6.1.7.3+dfsg-4
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
rails
natty
not-affected
maverick
not-affected
lucid
not-affected
hardy
ignored
Common Weakness Enumeration
References
http://groups.google.com/group/rubyonrails-security/msg/663b600d4471e0d4?dmode=source&output=gplain
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062514.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-June/062090.html
http://openwall.com/lists/oss-security/2011/06/09/2
http://openwall.com/lists/oss-security/2011/06/13/9
http://secunia.com/advisories/44789
http://weblog.rubyonrails.org/2011/6/8/potential-xss-vulnerability-in-ruby-on-rails-applications
http://groups.google.com/group/rubyonrails-security/msg/663b600d4471e0d4?dmode=source&output=gplain
http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062514.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-June/062090.html
http://openwall.com/lists/oss-security/2011/06/09/2
http://openwall.com/lists/oss-security/2011/06/13/9
http://secunia.com/advisories/44789
http://weblog.rubyonrails.org/2011/6/8/potential-xss-vulnerability-in-ruby-on-rails-applications