CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-28103

Action Pack is a framework for handling and responding to web requests. Since 6.1.0, the application configurable Permissions-Policy is only served on responses with an HTML related Content-Type. This vulnerability is fixed in 6.1.7.8, 7.0.8.2, and 7.1.3.3.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.5%

CVSS Severity

CVSS v3 Score 5.4

References

Products affected by CVE-2024-28103

Rubyonrails » Rails » Version: 6.1.0

cpe:2.3:a:rubyonrails:rails:6.1.0
Rubyonrails » Rails » Version: 6.1.1

cpe:2.3:a:rubyonrails:rails:6.1.1
Rubyonrails » Rails » Version: 6.1.2

cpe:2.3:a:rubyonrails:rails:6.1.2
Rubyonrails » Rails » Version: 6.1.2.1

cpe:2.3:a:rubyonrails:rails:6.1.2.1
Rubyonrails » Rails » Version: 6.1.3

cpe:2.3:a:rubyonrails:rails:6.1.3
Rubyonrails » Rails » Version: 6.1.3.1

cpe:2.3:a:rubyonrails:rails:6.1.3.1
Rubyonrails » Rails » Version: 6.1.3.2

cpe:2.3:a:rubyonrails:rails:6.1.3.2
Rubyonrails » Rails » Version: 6.1.4

cpe:2.3:a:rubyonrails:rails:6.1.4
Rubyonrails » Rails » Version: 6.1.4.1

cpe:2.3:a:rubyonrails:rails:6.1.4.1
Rubyonrails » Rails » Version: 6.1.4.2

cpe:2.3:a:rubyonrails:rails:6.1.4.2
Rubyonrails » Rails » Version: 6.1.4.3

cpe:2.3:a:rubyonrails:rails:6.1.4.3
Rubyonrails » Rails » Version: 6.1.4.4

cpe:2.3:a:rubyonrails:rails:6.1.4.4
Rubyonrails » Rails » Version: 6.1.4.6

cpe:2.3:a:rubyonrails:rails:6.1.4.6
Rubyonrails » Rails » Version: 6.1.7.1

cpe:2.3:a:rubyonrails:rails:6.1.7.1
Rubyonrails » Rails » Version: 6.1.7.2

cpe:2.3:a:rubyonrails:rails:6.1.7.2
Rubyonrails » Rails » Version: 6.1.7.3

cpe:2.3:a:rubyonrails:rails:6.1.7.3
Rubyonrails » Rails » Version: 6.1.7.4

cpe:2.3:a:rubyonrails:rails:6.1.7.4
Rubyonrails » Rails » Version: 6.1.7.5

cpe:2.3:a:rubyonrails:rails:6.1.7.5
Rubyonrails » Rails » Version: 6.1.7.6

cpe:2.3:a:rubyonrails:rails:6.1.7.6
Rubyonrails » Rails » Version: 6.1.7.7

cpe:2.3:a:rubyonrails:rails:6.1.7.7
Rubyonrails » Rails » Version: 7.0.0

cpe:2.3:a:rubyonrails:rails:7.0.0
Rubyonrails » Rails » Version: 7.0.1

cpe:2.3:a:rubyonrails:rails:7.0.1
Rubyonrails » Rails » Version: 7.0.2.2

cpe:2.3:a:rubyonrails:rails:7.0.2.2
Rubyonrails » Rails » Version: 7.0.4.1

cpe:2.3:a:rubyonrails:rails:7.0.4.1
Rubyonrails » Rails » Version: 7.0.4.2

cpe:2.3:a:rubyonrails:rails:7.0.4.2
Rubyonrails » Rails » Version: 7.0.4.3

cpe:2.3:a:rubyonrails:rails:7.0.4.3
Rubyonrails » Rails » Version: 7.0.5

cpe:2.3:a:rubyonrails:rails:7.0.5
Rubyonrails » Rails » Version: 7.0.5.1

cpe:2.3:a:rubyonrails:rails:7.0.5.1
Rubyonrails » Rails » Version: 7.0.6

cpe:2.3:a:rubyonrails:rails:7.0.6
Rubyonrails » Rails » Version: 7.0.7

cpe:2.3:a:rubyonrails:rails:7.0.7
Rubyonrails » Rails » Version: 7.0.7.1

cpe:2.3:a:rubyonrails:rails:7.0.7.1
Rubyonrails » Rails » Version: 7.0.7.2

cpe:2.3:a:rubyonrails:rails:7.0.7.2
Rubyonrails » Rails » Version: 7.0.8

cpe:2.3:a:rubyonrails:rails:7.0.8
Rubyonrails » Rails » Version: 7.0.8.1

cpe:2.3:a:rubyonrails:rails:7.0.8.1
Rubyonrails » Rails » Version: 7.0.8.2

cpe:2.3:a:rubyonrails:rails:7.0.8.2
Rubyonrails » Rails » Version: 7.0.8.3

cpe:2.3:a:rubyonrails:rails:7.0.8.3
Rubyonrails » Rails » Version: 7.1.0

cpe:2.3:a:rubyonrails:rails:7.1.0
Rubyonrails » Rails » Version: 7.1.1

cpe:2.3:a:rubyonrails:rails:7.1.1
Rubyonrails » Rails » Version: 7.1.2

cpe:2.3:a:rubyonrails:rails:7.1.2
Rubyonrails » Rails » Version: 7.1.3

cpe:2.3:a:rubyonrails:rails:7.1.3
Rubyonrails » Rails » Version: 7.1.3.1

cpe:2.3:a:rubyonrails:rails:7.1.3.1
Rubyonrails » Rails » Version: 7.1.3.2

cpe:2.3:a:rubyonrails:rails:7.1.3.2
Rubyonrails » Rails » Version: 7.1.3.3

cpe:2.3:a:rubyonrails:rails:7.1.3.3
Rubyonrails » Rails » Version: 7.2.0

cpe:2.3:a:rubyonrails:rails:7.2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-28103

Products

Pricing

Contact Us