The is a code injection vulnerability in versions of Rails prior to 5.0.1 that wouldallow an attacker who controlled the `locals` argument of a `render` call to perform a RCE.

There is a code injection vulnerability in versions of Rails prior to 4.2.11.3 and 5.x prior to 5.0.1 that would allow an attacker who controlled the "locals" argument of a "render" call to perform a Remote Code Execution.

Multiple vulnerabilities were found in Ruby on Rails, a MVC ruby-based framework geared for web application development, which could lead to remote code execution and untrusted user input usage, depending on the application.

CVE-2020-8163

A code injection vulnerability in Rails would allow an attacker who controlled the `locals` argument of a `render` call to perform a RCE.

CVE-2020-8164

A deserialization of untrusted data vulnerability exists in rails which can allow an attacker to supply information can be inadvertently leaked from Strong Parameters.

CVE-2020-8165

A deserialization of untrusted data vulnernerability exists in rails that can allow an attacker to unmarshal user-provided objects in MemCacheStore and RedisCacheStore potentially resulting in an RCE.

For Debian 9 stretch, these problems have been fixed in version 2:4.2.7.1-1+deb9u3.

We recommend that you upgrade your rails packages.

For the detailed security status of rails please refer to its security tracker page at: https://security-tracker.debian.org/tracker/rails

NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Ruby on Rails blog :

Due to an unfortunate oversight, Rails 4.2.11.2 has a missing constant error. To address this Rails 4.2.11.3 has been released.

The original announcement for CVE-2020-8163 has a follow-up message with an updated patch if you're unable to use the gems.

ID	Name	Product	Family	Severity
112720	Rails < 4.2.11.3 / 5.x < 5.0.1 Remote Code Execution	Web App Scanning	Component Vulnerability	high
138781	Debian DLA-2282-1 : rails security update	Nessus	Debian Local Security Checks	critical
136689	FreeBSD : Rails -- remote code execution vulnerability (ce6db19b-976e-11ea-93c4-08002728f74c)	Nessus	FreeBSD Local Security Checks	high

Detections

Analytics

CVE-2020-8163

high

Tenable Plugins

high

critical

high