A vulnerability, which was classified as problematic, has been found in Action Pack 6.0.0 on Ruby on Rails. Affected by this issue is an unknown code of the component Host Authorization Middleware. Upgrading eliminates this vulnerability. The upgrade is hosted for download at weblog.rubyonrails.org.
Action Pack 6.0.0 on Ruby on Rails Host Authorization Middleware redirect
- Virtual Patching
- October 18, 2021
- 5:05 pm
CVE-2022-22486 : IBM TIVOLI WORKLOAD SCHEDULER 9.4/9.5/10.1 XML EXTERNAL ENTITY REFERENCE
Description IBM Tivoli Workload Scheduler 9.4, 9.5, and 10.1 is vulnerable to an XML External Entity Injection (XXE) attack when
CVE-2023-24997 : APACHE INLONG UP TO 1.5.0 DESERIALIZATION
Description Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0.
CVE-2022-37708 : DOCKER 20.10.15 BUILD FD82621 PERMISSION
Description Docker version 20.10.15, build fd82621 is vulnerable to Insecure Permissions. Unauthorized users outside the Docker container can access any