Ruby on Rails Active Resource
By the Year
In 2020 there have been 1 vulnerability in Ruby on Rails Active Resource with an average score of 7.5 out of ten. Last year Active Resource had 0 security vulnerabilities published. That is, 1 more vulnerability have already been reported in 2020 as compared to last year.
It may take a day or so for new Active Resource vulnerabilities to show up. Additionally vulnerabilities may be tagged under a different product or component name.
Latest Ruby on Rails Active Resource Security Vulnerabilities
There is a possible information disclosure issue in Active Resource <v5.1.1
7.5 - High
- May 12, 2020
There is a possible information disclosure issue in Active Resource <v5.1.1 that could allow an attacker to create specially crafted requests to access data in an unexpected way and possibly leak information.
CVE-2020-8151 can be explotited with network access, and does not require authorization privledges or user interaction. This vulnerability is considered to have a low attack complexity. It has the highest possible exploitability rating (3.9). The potential impact of an exploit of this vulnerability is considered to have a high impact on confidentiality, with no impact on integrity and availability.