CVE-2019-5420
Use of Insufficiently Random Values in Railties Allows Remote Code Execution
9.8
CRITICAL
CVSS 3.1
EPSS 93.5%
Description
A remote code execution vulnerability in development mode Rails <5.2.2.1, <6.0.0.beta3 can allow an attacker to guess the automatically generated development mode secret token. This secret token can be used in combination with other Rails internals to escalate to a remote code execution exploit.
How to fix CVE-2019-5420
To remediate CVE-2019-5420, upgrade the affected package to a fixed version below.
- —upgrade to 2:5.2.2.1+dfsg-1 or later
- —upgrade to 5.2.2.1 or later
Is CVE-2019-5420 being exploited?
Likely — EPSS is 93.5%, placing CVE-2019-5420 in the top tier of vulnerabilities by exploitation probability. Prioritise patching.
Affected packages (2)
- from 0, < 2:5.2.2.1+dfsg-1
- >= 5.2.0, < 5.2.2.1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | CRITICAL9.8 | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
References (8)
- ADVISORYnvd.nist.gov/vuln/detail/CVE-2019-5420
- ADVISORYsecurity-tracker.debian.org/tracker/CVE-2019-5420
- WEBpacketstormsecurity.com/files/152704/Ruby-On-Rails-DoubleTap-Development-Mode-secret_key_base-Remote-Code-Execution.html
- WEBgithub.com/rubysec/ruby-advisory-db/blob/master/gems/railties/CVE-2019-5420.yml