vulnerability

FreeBSD: VID-ce6db19b-976e-11ea-93c4-08002728f74c (CVE-2020-8163): Rails -- remote code execution vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:L/Au:S/C:P/I:P/A:P)	May 16, 2020	May 18, 2020	Dec 10, 2025

Severity

CVSS

(AV:N/AC:L/Au:S/C:P/I:P/A:P)

Published

May 16, 2020

Added

May 18, 2020

Modified

Dec 10, 2025

Description

Ruby on Rails blog: Due to an unfortunate oversight, Rails 4.2.11.2 has a missing constant error. To address this Rails 4.2.11.3 has been released. The original announcement for CVE-2020-8163 has a follow-up message with an updated patch if you’re unable to use the gems.

Solution

freebsd-upgrade-package-rubygem-actionview4

References

CVE-2020-8163
https://attackerkb.com/topics/CVE-2020-8163
CWE-94

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today