CVE-2015-1840

Опубликовано: 16 июн. 2015

Источник: redhat

CVSS2: 4.3

EPSS Низкий

Описание

jquery_ujs.js in jquery-rails before 3.1.3 and 4.x before 4.0.4 and rails.js in jquery-ujs before 1.0.4, as used with Ruby on Rails 3.x and 4.x, allow remote attackers to bypass the Same Origin Policy, and trigger transmission of a CSRF token to a different-domain web server, via a leading space character in a URL within an attribute value.

A flaw was found in the way rubygem-jquery-rails filtered CSRF tokens from HTTP requests. An attacker able to control the href attribute of an anchor tag or the action attribute of a form tag, could use this flaw to force an application to send a request that includes a CSRF token to an attacker-specified site, thus leaking the CSRF token.

Затронутые пакеты

Платформа	Пакет	Состояние
CloudForms Management Engine 5	ruby193-rubygem-jquery-rails	Affected
Red Hat OpenShift Enterprise 2	ruby193-rubygem-jquery-rails	Will not fix
Red Hat Software Collections	rh-ror41-rubygem-jquery-rails	Will not fix
Red Hat Software Collections	ror40-rubygem-jquery-rails	Will not fix
Red Hat Software Collections	ruby193-rubygem-jquery-rails	Will not fix
Red Hat Subscription Asset Manager	ruby193-rubygem-jquery-rails	Will not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-212->CWE-201->CWE-352

https://bugzilla.redhat.com/show_bug.cgi?id=1233334rubygem-jquery-rails: CSRF Vulnerability in jquery-ujs and jquery-rails

EPSS

Процентиль: 55%

0.00323

Низкий

4.3 Medium

CVSS2

Связанные уязвимости

CVE-2015-1840

ubuntu

больше 10 лет назад

CVE-2015-1840

nvd

больше 10 лет назад

CVE-2015-1840

debian

больше 10 лет назад

jquery_ujs.js in jquery-rails before 3.1.3 and 4.x before 4.0.4 and ra ...

GHSA-4whc-pp4x-9pf3

github

больше 8 лет назад

jquery-rails and jquery-ujs subject to Exposure of Sensitive Information

EPSS

Процентиль: 55%

0.00323

Низкий

4.3 Medium

CVSS2