CVE-2023-50448 in activeadmin Geminfo

Zusammenfassung

von MITRE • 29.12.2023

In ActiveAdmin (aka Active Admin) before 2.12.0, a concurrency issue allows a malicious actor to access potentially private data (that belongs to another user) by making CSV export requests at certain specific times.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservieren

10.12.2023

Veröffentlichung

29.12.2023

Moderieren

akzeptiert

Eintrag

VDB-248244

CPE

bereit

EPSS

0.00496

KEV

nein

Aktivitäten

very low

Quellen

Do you know our Splunk app?

Download it now for free!