Active Support is a toolkit of support libraries and Ruby core extensions extracted from the Rails framework. Prior to versions 8.1.2.1, 8.0.4.1, and 7.2.3.1, Active Support number helpers accept strings containing scientific notation (e.g. `1e10000`), which `BigDecimal` expands into extremely large decimal representations. This can cause excessive memory allocation and CPU consumption when the expanded number is formatted, possibly resulting in a DoS vulnerability.
Versions 8.1.2.1, 8.0.4.1, and 7.2.3.1 contain a patch.
Attack Parameters
Attack Vector
Network
Can be exploited remotely
Attack Complexity
Low
Easy to exploit
Attack Requirements
None
No additional conditions
Privileges Required
None
No privileges needed
User Interaction
None
No user interaction needed
Impact Assessment
Confidentiality
None
No data leak
Integrity
None
No data modification
Availability
High
Complete denial of service
CVSS Vector v4.0
Weakness Type (CWE)
Vulnerable Products 3
| Configuration | From (including) | Up to (excluding) |
|---|---|---|
|
Rubyonrails Rails
cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*
|
— |
7.2.3.1
|
|
Rubyonrails Rails
cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*
|
8.0.0
|
8.0.4.1
|
|
Rubyonrails Rails
cpe:2.3:a:rubyonrails:rails:*:*:*:*:*:*:*:*
|
8.1.0
|
8.1.2.1
|
References 7
https://github.com/rails/rails/commit/19dbab51ca086a657bb86458042bc44314916bcb
security-advisories@github.com
https://github.com/rails/rails/commit/ebd6be18120d1136511eb516338e27af25ac0a1a
security-advisories@github.com
https://github.com/rails/rails/commit/ee2c59e730e5b8faed502cd2c573109df093f856
security-advisories@github.com
https://github.com/rails/rails/releases/tag/v7.2.3.1
security-advisories@github.com
https://github.com/rails/rails/releases/tag/v8.0.4.1
security-advisories@github.com
https://github.com/rails/rails/releases/tag/v8.1.2.1
security-advisories@github.com
https://github.com/rails/rails/security/advisories/GHSA-2j26-frm8-cmj9
security-advisories@github.com