CVE-2021-22904

moderate-risk
Published 2021-06-11

The actionpack ruby gem before 6.1.3.2, 6.0.3.7, 5.2.4.6, 5.2.6 suffers from a possible denial of service vulnerability in the Token Authentication logic in Action Controller due to a too permissive regular expression. Impacted code uses `authenticate_or_request_with_http_token` or `authenticate_with_http_token` for request authentication.

Do I need to act?

~
7.9% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10 High
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Rubyonrails

References (6)

Exploit https://discuss.rubyonrails.org/t/cve-2021-22904-possible-dos-vulnerability-in-a...
Permissions Required https://hackerone.com/reports/1101125
Third Party Advisory https://security.netapp.com/advisory/ntap-20210805-0009/
Exploit https://discuss.rubyonrails.org/t/cve-2021-22904-possible-dos-vulnerability-in-a...
Permissions Required https://hackerone.com/reports/1101125
Third Party Advisory https://security.netapp.com/advisory/ntap-20210805-0009/
41
/ 100
moderate-risk
Severity 26/34 · High
Exploitability 10/34 · Low
Exposure 5/34 · Minimal