CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Rubyonrails: >> Rails >> 6.1.7.7 Security Vulnerabilities

CVE-2024-28103

Action Pack is a framework for handling and responding to web requests. Since 6.1.0, the application configurable Permissions-Policy is only served on responses with an HTML related Content-Type. This vulnerability is fixed in 6.1.7.8, 7.0.8.2, and 7.1.3.3.

CVSS Score

5.4

EPSS Score

0.009

Published

2024-06-04

Page 1

Vulnerabilities

Vulnerable Software

Rubyonrails: >> Rails >> 6.1.7.7 Security Vulnerabilities

Products

Pricing

Contact Us