The PostgreSQL adapter in Active Record before 6.1.2.1, 6.0.3.5, 5.2.4.5 suffers from a regular expression denial of service (REDoS) vulnerability. Carefully crafted input can cause the input validation in the `money` type of the PostgreSQL adapter in Active Record to spend too much time in a regular expression, resulting in the potential for a DoS attack. This only impacts Rails applications that are using PostgreSQL along with money type columns that take user input.

The remote SUSE Linux SUSE15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE-SU-2021:1468-1 advisory.

  - The PostgreSQL adapter in Active Record before 6.1.2.1, 6.0.3.5, 5.2.4.5 suffers from a regular expression     denial of service (REDoS) vulnerability. Carefully crafted input can cause the input validation in the     `money` type of the PostgreSQL adapter in Active Record to spend too much time in a regular expression,     resulting in the potential for a DoS attack. This only impacts Rails applications that are using     PostgreSQL along with money type columns that take user input. (CVE-2021-22880)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SUSE15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE-SU-2021:3634-1 advisory.

  - The PostgreSQL adapter in Active Record before 6.1.2.1, 6.0.3.5, 5.2.4.5 suffers from a regular expression     denial of service (REDoS) vulnerability. Carefully crafted input can cause the input validation in the     `money` type of the PostgreSQL adapter in Active Record to spend too much time in a regular expression,     resulting in the potential for a DoS attack. This only impacts Rails applications that are using     PostgreSQL along with money type columns that take user input. (CVE-2021-22880)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2021:3634-1 advisory.

  - The PostgreSQL adapter in Active Record before 6.1.2.1, 6.0.3.5, 5.2.4.5 suffers from a regular expression     denial of service (REDoS) vulnerability. Carefully crafted input can cause the input validation in the     `money` type of the PostgreSQL adapter in Active Record to spend too much time in a regular expression,     resulting in the potential for a DoS attack. This only impacts Rails applications that are using     PostgreSQL along with money type columns that take user input. (CVE-2021-22880)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Multiple security issues were discovered in the Rails web framework which could result in denial of service.

The remote Fedora 33 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2021-b571fca1b8 advisory.

  - The PostgreSQL adapter in Active Record before 6.1.2.1, 6.0.3.5, 5.2.4.5 suffers from a regular expression     denial of service (REDoS) vulnerability. Carefully crafted input can cause the input validation in the     `money` type of the PostgreSQL adapter in Active Record to spend too much time in a regular expression,     resulting in the potential for a DoS attack. This only impacts Rails applications that are using     PostgreSQL along with money type columns that take user input. (CVE-2021-22880)

  - The Host Authorization middleware in Action Pack before 6.1.2.1, 6.0.3.5 suffers from an open redirect     vulnerability. Specially crafted `Host` headers in combination with certain allowed host formats can     cause the Host Authorization middleware in Action Pack to redirect users to a malicious website. Impacted     applications will have allowed hosts with a leading dot. When an allowed host contains a leading dot, a     specially crafted `Host` header can be used to redirect to a malicious website. (CVE-2021-22881)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

The remote Fedora 32 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-def0e32233 advisory.

  - The PostgreSQL adapter in Active Record before 6.1.2.1, 6.0.3.5, 5.2.4.5 suffers from a regular expression     denial of service (REDoS) vulnerability. Carefully crafted input can cause the input validation in the     `money` type of the PostgreSQL adapter in Active Record to spend too much time in a regular expression,     resulting in the potential for a DoS attack. This only impacts Rails applications that are using     PostgreSQL along with money type columns that take user input. (CVE-2021-22880)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Ruby on Rails blog :

Rails version 5.2.4.5, 6.0.3.5 and 6.1.2.1 have been released! Those version are security releases and addresses two issues :

CVE-2021-22880: Possible DoS Vulnerability in Active Record PostgreSQL adapter.

CVE-2021-22881: Possible Open Redirect in Host Authorization Middleware.

ID	Name	Product	Family	Severity
155345	openSUSE 15 Security Update : rubygem-activerecord-5_1 (openSUSE-SU-2021:1468-1)	Nessus	SuSE Local Security Checks	high
155012	openSUSE 15 Security Update : rubygem-activerecord-5_1 (openSUSE-SU-2021:3634-1)	Nessus	SuSE Local Security Checks	high
155002	SUSE SLES15 Security Update : rubygem-activerecord-5_1 (SUSE-SU-2021:3634-1)	Nessus	SuSE Local Security Checks	high
150704	Debian DSA-4929-1 : rails - security update	Nessus	Debian Local Security Checks	high
147802	Fedora 33 : 1:rubygem-actionpack / 1:rubygem-activerecord (2021-b571fca1b8)	Nessus	Fedora Local Security Checks	medium
147798	Fedora 32 : 1:rubygem-activerecord (2021-def0e32233)	Nessus	Fedora Local Security Checks	high
146574	FreeBSD : Rails -- multiple vulnerabilities (8e670b85-706e-11eb-abb2-08002728f74c)	Nessus	FreeBSD Local Security Checks	medium

Detections

Analytics

CVE-2021-22880

high

Tenable Plugins

high

high

high

high

medium

high

medium