CVE-2021-22881

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Ruby on Rails versions prior to 6.1.2.1 Ruby on Rails versions prior to 6.0.3.5

Description The Host Authorization middleware in Action Pack is susceptible to an open redirect. Specifically crafted Host headers, when used with certain "allowed host" formats, can cause the middleware to redirect users to a malicious website. Impacted applications will have allowed hosts with a leading dot. When an allowed host contains a leading dot, a specially crafted Host header can be used to redirect to a malicious website. The vulnerability resides in the handling of the Host header and the allowed host configuration.

Recommendations Update to Ruby on Rails version 6.1.2.1 or later. Update to Ruby on Rails version 6.0.3.5 or later.

Exploit

Fix

Open Redirect

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-601

Related Identifiers

ALT-PU-2021-2693

CVE-2021-22881

GHSA-8877-PRQ4-9XFW

OPENSUSE-SU-2024:11318-1

OPENSUSE-SU-2024:11821-1

Affected Products

Alt Linux

Action Pack

CVE-2021-22881

Weakness Enumeration

Related Identifiers

Affected Products

References · 40