Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2024-47887

UNKNOWN
Published 2024-10-16T20:02:34.722Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2024-47887. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

Action Pack is a framework for handling and responding to web requests. Starting in version 4.0.0 and prior to versions 6.1.7.9, 7.0.8.5, 7.1.4.1, and 7.2.1.1, there is a possible ReDoS vulnerability in Action Controller's HTTP Token authentication. For applications using HTTP Token authentication via `authenticate_or_request_with_http_token` or similar, a carefully crafted header may cause header parsing to take an unexpected amount of time, possibly resulting in a DoS vulnerability. All users running an affected release should either upgrade to versions 6.1.7.9, 7.0.8.5, 7.1.4.1, or 7.2.1.1 or apply the relevant patch immediately. One may choose to use Ruby 3.2 as a workaround.Ruby 3.2 has mitigations for this problem, so Rails applications using Ruby 3.2 or newer are unaffected. Rails 8.0.0.beta1 depends on Ruby 3.2 or greater so is unaffected.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

rails

rails

Affected Versions:

>= 4.0.0, < 6.1.7.9 >= 7.0.0, < 7.0.8.5 >= 7.1.0, < 7.1.4.1 >= 7.2.0, < 7.2.1.1
rubyonrails

rails

Affected Versions:

4.0.0 7.0.0 7.1.0 7.2.0

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

✓ GitHub Reviewed MODERATE

Possible ReDoS vulnerability in HTTP Token authentication in Action Controller

GHSA-vfg9-r3fq-jvx4

Advisory Details

There is a possible ReDoS vulnerability in Action Controller's HTTP Token authentication. This vulnerability has been assigned the CVE identifier CVE-2024-47887. Impact ------ For applications using HTTP Token authentication via `authenticate_or_request_with_http_token` or similar, a carefully crafted header may cause header parsing to take an unexpected amount of time, possibly resulting in a DoS vulnerability. All users running an affected release should either upgrade or apply the relevant patch immediately. Ruby 3.2 has mitigations for this problem, so Rails applications using Ruby 3.2 or newer are unaffected. Rails 8.0.0.beta1 depends on Ruby 3.2 or greater so is unaffected. Releases -------- The fixed releases are available at the normal locations. Workarounds ----------- Users on Ruby 3.2 are unaffected by this issue. Credits ------- Thanks to [scyoon](https://hackerone.com/scyoon) for reporting

Affected Packages

RubyGems actionpack
ECOSYSTEM: ≥4.0.0 <6.1.7.9
RubyGems actionpack
ECOSYSTEM: ≥7.0.0 <7.0.8.5
RubyGems actionpack
ECOSYSTEM: ≥7.1.0 <7.1.4.1
RubyGems actionpack
ECOSYSTEM: ≥7.2.0 <7.2.1.1

CVSS Scoring

CVSS Score

5.0

CVSS Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U

References

WEB https://github.com/rails/rails/security/advisories/GHSA-vfg9-r3fq-jvx4
PACKAGE https://github.com/rails/rails
WEB https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2024-47887.yml

Advisory provided by GitHub Security Advisory Database. Published: October 15, 2024, Modified: October 31, 2024

References

https://github.com/rails/rails/security/advisories/GHSA-vfg9-r3fq-jvx4
https://github.com/rails/rails/commit/56b2fc3302836405b496e196a8d5fc0195e55049
https://github.com/rails/rails/commit/7c1398854d51f9bb193fb79f226647351133d08a
https://github.com/rails/rails/commit/8e057db25bff1dc7a98e9ae72e0083825b9ac545
https://github.com/rails/rails/commit/f4dc83d8926509d0958ec21fcdbc2e7df3d32ce2
Published: 2024-10-16T20:02:34.722Z
Last Modified: 2024-10-17T16:36:00.367Z
Copied to clipboard!