Home > Vulnerability Database > CVE-2016-2097

Mend.io Vulnerability Database

CVE-2016-2097

Good to know:

Date: April 7, 2016

Directory traversal vulnerability in Action View in Ruby on Rails before 3.2.22.2 and 4.x before 4.1.14.2 allows remote attackers to read arbitrary files by leveraging an application's unrestricted use of the render method and providing a .. (dot dot) in a pathname. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-0752.

Language: Ruby

Severity Score

5.3

Related Resources (21)

Url: https://groups.google.com/forum/#!topic/rubyonrails-security/ddY6HgqB2z4

Url: http://weblog.rubyonrails.org/2016/2/29/Rails-4-2-5-2-4-1-14-2-3-2-22-2-have-been-released/

Url: https://github.com/advisories/GHSA-2pwf-xwr3-hp55

Url: https://nvd.nist.gov/vuln/detail/CVE-2016-2097

Url: http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00006.html

Url: https://security-tracker.debian.org/tracker/CVE-2016-2097

Url: https://groups.google.com/forum/message/raw?msg=rubyonrails-security/ddY6HgqB2z4/we0RasMZIAAJ

Url: http://www.debian.org/security/2016/dsa-3509

Url: http://weblog.rubyonrails.org/2016/2/29/Rails-4-2-5-2-4-1-14-2-3-2-22-2-have-been-released

Url: https://web.archive.org/web/20160322002234/http://www.securitytracker.com/id/1035122

Url: http://www.securityfocus.com/bid/83726

Url: https://web.archive.org/web/20201221115217/https://groups.google.com/forum/message/raw?msg=rubyonrails-security/ddY6HgqB2z4/we0RasMZIAAJ

Url: https://github.com/rails/rails/commit/8a1d3ea617ffb0c8ae8467fa439bf63a3bfc4324

Url: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00080.html

Url: https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionview/CVE-2016-2097.yml

Url: http://www.securitytracker.com/id/1035122

Url: https://github.com/rails/rails

Url: http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00083.html

Url: https://web.archive.org/web/20200228015320/http://www.securityfocus.com/bid/83726

Url: https://github.com/rubysec/ruby-advisory-db/blob/master/gems/actionpack/CVE-2016-2097.yml

Url: https://www.mend.io/vulnerability-database/CVE-2016-2097

Severity Score

5.3

Weakness Type (CWE)

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-22

Top Fix

Upgrade Version

Upgrade to version actionview - 4.1.14.2;actionpack - 3.2.22.2;actionpack - 4.1.14.2

Learn More

CVSS v3.1

Base Score:	5.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	NONE
Availability (A):	NONE

CVSS v2

Base Score:	5.0
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	NONE
Availability (A):	NONE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2016-2097

Good to know:

Date: April 7, 2016

Language: Ruby

Severity Score

Related Resources (21)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

CVSS v2

Do you need more information?