RubyGems package
request_store
pkg:gem/request_store
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-43791 | — | >= 1.3.2, < 1.4.0 | 1.4.0 | Aug 23, 2024 | RequestStore provides per-request global storage for Rack. The files published as part of request_store 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production e |
- CVE-2024-43791Aug 23, 2024affected >= 1.3.2, < 1.4.0fixed 1.4.0
RequestStore provides per-request global storage for Rack. The files published as part of request_store 1.3.2 have 0666 permissions, meaning that they are world-writable, which allows local users to execute arbitrary code. This version was published in 2017, and most production e