Ryan Koppenhaver

**Name of the Vulnerable Software and Affected Versions** Ruby on Rails versions prior to 2.3.17 Ruby on Rails versions 3.1.x prior to 3.1.11 Ruby on Rails versions 3.2.x prior to 3.2.12 **Description** The issue allows remote attackers to bypass the `attr protected` protection mechanism and modify protected model attributes via a crafted request. This enables attackers to manipulate attributes that should be protected, potentially leading to unauthorized data modifications. **Recommendations** For versions prior to 2.3.17, update to version 2.3.17 or later. For versions 3.1.x prior to 3.1.11, update to version 3.1.11 or later. For versions 3.2.x prior to 3.2.12, update to version 3.2.12 or later.