Use-after-free in Ruby on Rails

#VU53004 Use-after-free in Ruby on Rails

Published: 2021-05-10

Vulnerability identifier: #VU53004

Vulnerability risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-22904

CWE-ID:

Exploitation vector: Network

Exploit availability:

Vulnerable software:
Ruby on Rails
Universal components / Libraries / Scripting languages

Vendor: Rails

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error in the Token Authentication logic in Action Controller. A remote attacker can send a specially crafted request and cause a denial of service condition on the target system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Ruby on Rails: 4.0.0 - 6.1.3.1

Fixed software versions

CPE

cpe:2.3:a:rails:ruby_on_rails:4.2.11.3:*:*:*:*:*:*:*

External links
http://seclists.org/oss-sec/2021/q2/102

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

Latest bulletins with this vulnerability

Multiple vulnerabilities in IBM Cloud Pak for Multicloud Management Infrastructure Management

SUSE update for rubygem-actionpack-5_1, rubygem-activesupport-5_1

Debian update for rails

Multiple vulnerabilities in Ruby on Rails