CVE-2016-0752 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
redhat	CNA	---				---
CVE	ADP	---				---
CISA-ADP	ADP	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 99%

Vendor	Product	Version
rubyonrails	rails	𝑥 < 3.2.22.1
rubyonrails	rails	4.0.0 ≤ 𝑥 < 4.1.14.1
rubyonrails	rails	4.2.0 ≤ 𝑥 < 4.2.5.1
rubyonrails	rails	5.0.0:beta1
opensuse	leap	42.1
opensuse	opensuse	13.2
debian	debian_linux	8.0
redhat	software_collections	1.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

rails

bullseye (security)	2:6.0.3.7+dfsg-2+deb11u2 fixed
bullseye	2:6.0.3.7+dfsg-2+deb11u2 fixed
wheezy	not-affected
bookworm	2:6.1.7.3+dfsg-2~deb12u1 fixed
sid	2:6.1.7.3+dfsg-4 fixed
trixie	2:6.1.7.3+dfsg-4 fixed

Ubuntu Releases

Ubuntu Product

Codename

rails

disco	not-affected
cosmic	not-affected
bionic	not-affected
artful	ignored
zesty	ignored
yakkety	ignored
xenial	not-affected
wily	ignored
vivid	Fixed 2:4.1.8-1+deb8u1build0.15.04.1 released
trusty	dne
precise	not-affected

rails-4.0

disco	dne
cosmic	dne
bionic	dne
artful	dne
zesty	dne
yakkety	dne
xenial	dne
wily	dne
vivid	dne
trusty	dne
precise	dne

ruby-actionpack-2.3

disco	dne
cosmic	dne
bionic	dne
artful	dne
zesty	dne
yakkety	dne
xenial	dne
wily	dne
vivid	dne
trusty	dne
precise	ignored

ruby-actionpack-3.2

disco	dne
cosmic	dne
bionic	dne
artful	dne
zesty	dne
yakkety	dne
xenial	dne
wily	dne
vivid	dne
trusty	dne
precise	dne

ruby-activerecord-2.3

disco	dne
cosmic	dne
bionic	dne
artful	dne
zesty	dne
yakkety	dne
xenial	dne
wily	dne
vivid	dne
trusty	dne
precise	ignored

ruby-activerecord-3.2

disco	dne
cosmic	dne
bionic	dne
artful	dne
zesty	dne
yakkety	dne
xenial	dne
wily	dne
vivid	dne
trusty	dne
precise	dne

ruby-activesupport-2.3

disco	dne
cosmic	dne
bionic	dne
artful	dne
zesty	dne
yakkety	dne
xenial	dne
wily	dne
vivid	dne
trusty	dne
precise	ignored

ruby-activesupport-3.2

disco	dne
cosmic	dne
bionic	dne
artful	dne
zesty	dne
yakkety	dne
xenial	dne
wily	dne
vivid	dne
trusty	dne
precise	dne

ruby-rails-2.3

disco	dne
cosmic	dne
bionic	dne
artful	dne
zesty	dne
yakkety	dne
xenial	dne
wily	dne
vivid	dne
trusty	dne
precise	ignored

ruby-rails-3.2

disco	dne
cosmic	dne
bionic	dne
artful	dne
zesty	dne
yakkety	dne
xenial	dne
wily	dne
vivid	dne
trusty	dne
precise	dne

Known Exploits!

Common Weakness Enumeration

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
The software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References

http://lists.fedoraproject.org/pipermail/package-announce/2016-February/178044.html

http://lists.fedoraproject.org/pipermail/package-announce/2016-February/178069.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00053.html

http://lists.opensuse.org/opensuse-updates/2016-02/msg00034.html

http://lists.opensuse.org/opensuse-updates/2016-02/msg00043.html

http://rhn.redhat.com/errata/RHSA-2016-0296.html

http://www.debian.org/security/2016/dsa-3464

http://www.openwall.com/lists/oss-security/2016/01/25/13

http://www.securityfocus.com/bid/81801

http://www.securitytracker.com/id/1034816

https://groups.google.com/forum/message/raw?msg=ruby-security-ann/335P1DcLG00/JXcBnTtZEgAJ

https://www.exploit-db.com/exploits/40561/