CVE-2016-2098 - Vulnerability Details

Action Pack in Ruby on Rails before 3.2.22.2, 4.x before 4.1.14.2, and 4.2.x before 4.2.5.2 allows remote attackers to execute arbitrary Ruby code by leveraging an application's unrestricted use of the render method.

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.8595.

Key SSVC decision points have not yet been added.

Vendors	Products
Debian	Debian Linux
Redhat	Rhel Software Collections
Rubyonrails	Rails Ruby On Rails

Configuration 1 [-]

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Configuration 2 [-]

OR	cpe:2.3:a:rubyonrails:rails:4.0.0:-::::::
	cpe:2.3:a:rubyonrails:rails:4.0.0:beta::::::
	cpe:2.3:a:rubyonrails:rails:4.0.0:rc1::::::
	cpe:2.3:a:rubyonrails:rails:4.0.0:rc2::::::
	cpe:2.3:a:rubyonrails:rails:4.0.1:-::::::
	cpe:2.3:a:rubyonrails:rails:4.0.1:rc1::::::
	cpe:2.3:a:rubyonrails:rails:4.0.1:rc2::::::
	cpe:2.3:a:rubyonrails:rails:4.0.1:rc3::::::
	cpe:2.3:a:rubyonrails:rails:4.0.1:rc4::::::
	cpe:2.3:a:rubyonrails:rails:4.0.2:::::::*
	cpe:2.3:a:rubyonrails:rails:4.0.3:::::::*
	cpe:2.3:a:rubyonrails:rails:4.0.4:::::::*
	cpe:2.3:a:rubyonrails:rails:4.0.4:rc1::::::
	cpe:2.3:a:rubyonrails:rails:4.0.5:::::::*
	cpe:2.3:a:rubyonrails:rails:4.0.6:::::::*
	cpe:2.3:a:rubyonrails:rails:4.0.6:rc1::::::
	cpe:2.3:a:rubyonrails:rails:4.0.6:rc2::::::
	cpe:2.3:a:rubyonrails:rails:4.0.6:rc3::::::
	cpe:2.3:a:rubyonrails:rails:4.0.7:::::::*
	cpe:2.3:a:rubyonrails:rails:4.0.8:::::::*
	cpe:2.3:a:rubyonrails:rails:4.0.9:::::::*
	cpe:2.3:a:rubyonrails:rails:4.0.10:rc1::::::
	cpe:2.3:a:rubyonrails:rails:4.1.0:-::::::
	cpe:2.3:a:rubyonrails:rails:4.1.0:beta1::::::
	cpe:2.3:a:rubyonrails:rails:4.1.0:beta2::::::
	cpe:2.3:a:rubyonrails:rails:4.1.0:rc1::::::
	cpe:2.3:a:rubyonrails:rails:4.1.0:rc2::::::
	cpe:2.3:a:rubyonrails:rails:4.1.1:::::::*
	cpe:2.3:a:rubyonrails:rails:4.1.2:::::::*
	cpe:2.3:a:rubyonrails:rails:4.1.2:rc1::::::
	cpe:2.3:a:rubyonrails:rails:4.1.2:rc2::::::
	cpe:2.3:a:rubyonrails:rails:4.1.2:rc3::::::
	cpe:2.3:a:rubyonrails:rails:4.1.3:::::::*
	cpe:2.3:a:rubyonrails:rails:4.1.4:::::::*
	cpe:2.3:a:rubyonrails:rails:4.1.5:::::::*
	cpe:2.3:a:rubyonrails:rails:4.1.6:rc1::::::
	cpe:2.3:a:rubyonrails:rails:4.1.6:rc2::::::
	cpe:2.3:a:rubyonrails:rails:4.1.7:::::::*
	cpe:2.3:a:rubyonrails:rails:4.1.7.1:::::::*
	cpe:2.3:a:rubyonrails:rails:4.1.8:::::::*
	cpe:2.3:a:rubyonrails:rails:4.1.9:rc1::::::
	cpe:2.3:a:rubyonrails:rails:4.1.10:rc1::::::
	cpe:2.3:a:rubyonrails:rails:4.1.10:rc2::::::
	cpe:2.3:a:rubyonrails:rails:4.1.10:rc3::::::
	cpe:2.3:a:rubyonrails:rails:4.1.10:rc4::::::
	cpe:2.3:a:rubyonrails:rails:4.1.12:rc1::::::
	cpe:2.3:a:rubyonrails:rails:4.1.13:rc1::::::
	cpe:2.3:a:rubyonrails:rails:4.1.14:rc1::::::
	cpe:2.3:a:rubyonrails:rails:4.1.14:rc2::::::
	cpe:2.3:a:rubyonrails:rails:4.2.0:beta1::::::
	cpe:2.3:a:rubyonrails:rails:4.2.0:beta2::::::
	cpe:2.3:a:rubyonrails:rails:4.2.0:beta3::::::
	cpe:2.3:a:rubyonrails:rails:4.2.0:beta4::::::
	cpe:2.3:a:rubyonrails:rails:4.2.0:rc1::::::
	cpe:2.3:a:rubyonrails:rails:4.2.0:rc2::::::
	cpe:2.3:a:rubyonrails:rails:4.2.0:rc3::::::
	cpe:2.3:a:rubyonrails:rails:4.2.1:::::::*
	cpe:2.3:a:rubyonrails:rails:4.2.1:rc1::::::
	cpe:2.3:a:rubyonrails:rails:4.2.1:rc2::::::
	cpe:2.3:a:rubyonrails:rails:4.2.1:rc3::::::
	cpe:2.3:a:rubyonrails:rails:4.2.1:rc4::::::
	cpe:2.3:a:rubyonrails:rails:4.2.2:::::::*
	cpe:2.3:a:rubyonrails:rails:4.2.3:::::::*
	cpe:2.3:a:rubyonrails:rails:4.2.3:rc1::::::
cpe:2.3:a:rubyonrails:rails:4.2.4:::::::*
cpe:2.3:a:rubyonrails:rails:4.2.4:rc1::::::
cpe:2.3:a:rubyonrails:rails:4.2.5:::::::*
cpe:2.3:a:rubyonrails:rails:4.2.5:rc1::::::
cpe:2.3:a:rubyonrails:rails:4.2.5:rc2::::::
cpe:2.3:a:rubyonrails:rails:4.2.5.1:::::::*
cpe:2.3:a:rubyonrails:ruby_on_rails::::::::
cpe:2.3:a:rubyonrails:ruby_on_rails:4.1.14.1:::::::*

Package	CPE	Advisory	Released Date
Red Hat Software Collections for Red Hat Enterprise Linux 6
ror40-rubygem-actionpack-1:4.0.2-7.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0454	2016-03-15T00:00:00Z
ror40-rubygem-activerecord-1:4.0.2-6.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0454	2016-03-15T00:00:00Z
ror40-rubygem-activesupport-1:4.0.2-4.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0454	2016-03-15T00:00:00Z
ruby193-rubygem-actionpack-1:3.2.8-16.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0455	2016-03-15T00:00:00Z
ruby193-rubygem-activerecord-1:3.2.8-11.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0455	2016-03-15T00:00:00Z
ruby193-rubygem-activesupport-1:3.2.8-6.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0455	2016-03-15T00:00:00Z
rh-ror41-rubygem-actionpack-1:4.1.5-4.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0456	2016-03-15T00:00:00Z
rh-ror41-rubygem-actionview-0:4.1.5-5.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0456	2016-03-15T00:00:00Z
Red Hat Software Collections for Red Hat Enterprise Linux 6.6 EUS
ror40-rubygem-actionpack-1:4.0.2-7.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0454	2016-03-15T00:00:00Z
ror40-rubygem-activerecord-1:4.0.2-6.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0454	2016-03-15T00:00:00Z
ror40-rubygem-activesupport-1:4.0.2-4.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0454	2016-03-15T00:00:00Z
ruby193-rubygem-actionpack-1:3.2.8-16.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0455	2016-03-15T00:00:00Z
ruby193-rubygem-activerecord-1:3.2.8-11.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0455	2016-03-15T00:00:00Z
ruby193-rubygem-activesupport-1:3.2.8-6.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0455	2016-03-15T00:00:00Z
rh-ror41-rubygem-actionpack-1:4.1.5-4.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0456	2016-03-15T00:00:00Z
rh-ror41-rubygem-actionview-0:4.1.5-5.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0456	2016-03-15T00:00:00Z
Red Hat Software Collections for Red Hat Enterprise Linux 6.7 EUS
ror40-rubygem-actionpack-1:4.0.2-7.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0454	2016-03-15T00:00:00Z
ror40-rubygem-activerecord-1:4.0.2-6.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0454	2016-03-15T00:00:00Z
ror40-rubygem-activesupport-1:4.0.2-4.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0454	2016-03-15T00:00:00Z
ruby193-rubygem-actionpack-1:3.2.8-16.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0455	2016-03-15T00:00:00Z
ruby193-rubygem-activerecord-1:3.2.8-11.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0455	2016-03-15T00:00:00Z
ruby193-rubygem-activesupport-1:3.2.8-6.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0455	2016-03-15T00:00:00Z
rh-ror41-rubygem-actionpack-1:4.1.5-4.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0456	2016-03-15T00:00:00Z
rh-ror41-rubygem-actionview-0:4.1.5-5.el6	cpe:/a:redhat:rhel_software_collections:2::el6	RHSA-2016:0456	2016-03-15T00:00:00Z
Red Hat Software Collections for Red Hat Enterprise Linux 7
ror40-rubygem-actionpack-1:4.0.2-7.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0454	2016-03-15T00:00:00Z
ror40-rubygem-activerecord-1:4.0.2-6.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0454	2016-03-15T00:00:00Z
ror40-rubygem-activesupport-1:4.0.2-4.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0454	2016-03-15T00:00:00Z
ruby193-rubygem-actionpack-1:3.2.8-16.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0455	2016-03-15T00:00:00Z
ruby193-rubygem-activerecord-1:3.2.8-11.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0455	2016-03-15T00:00:00Z
ruby193-rubygem-activesupport-1:3.2.8-6.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0455	2016-03-15T00:00:00Z
rh-ror41-rubygem-actionpack-1:4.1.5-4.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0456	2016-03-15T00:00:00Z
rh-ror41-rubygem-actionview-0:4.1.5-5.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0456	2016-03-15T00:00:00Z
Red Hat Software Collections for Red Hat Enterprise Linux 7.1 EUS
ror40-rubygem-actionpack-1:4.0.2-7.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0454	2016-03-15T00:00:00Z
ror40-rubygem-activerecord-1:4.0.2-6.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0454	2016-03-15T00:00:00Z
ror40-rubygem-activesupport-1:4.0.2-4.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0454	2016-03-15T00:00:00Z
ruby193-rubygem-actionpack-1:3.2.8-16.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0455	2016-03-15T00:00:00Z
ruby193-rubygem-activerecord-1:3.2.8-11.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0455	2016-03-15T00:00:00Z
ruby193-rubygem-activesupport-1:3.2.8-6.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0455	2016-03-15T00:00:00Z
rh-ror41-rubygem-actionpack-1:4.1.5-4.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0456	2016-03-15T00:00:00Z
rh-ror41-rubygem-actionview-0:4.1.5-5.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0456	2016-03-15T00:00:00Z
Red Hat Software Collections for Red Hat Enterprise Linux 7.2 EUS
ror40-rubygem-actionpack-1:4.0.2-7.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0454	2016-03-15T00:00:00Z
ror40-rubygem-activerecord-1:4.0.2-6.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0454	2016-03-15T00:00:00Z
ror40-rubygem-activesupport-1:4.0.2-4.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0454	2016-03-15T00:00:00Z
ruby193-rubygem-actionpack-1:3.2.8-16.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0455	2016-03-15T00:00:00Z
ruby193-rubygem-activerecord-1:3.2.8-11.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0455	2016-03-15T00:00:00Z
ruby193-rubygem-activesupport-1:3.2.8-6.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0455	2016-03-15T00:00:00Z
rh-ror41-rubygem-actionpack-1:4.1.5-4.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0456	2016-03-15T00:00:00Z
rh-ror41-rubygem-actionview-0:4.1.5-5.el7	cpe:/a:redhat:rhel_software_collections:2::el7	RHSA-2016:0456	2016-03-15T00:00:00Z

No data.

Advisories

Source	ID	Title
Debian DLA	DLA-604-1	ruby-actionpack-3.2 security update
Debian DSA	DSA-3509-1	rails security update
Github GHSA	GHSA-78rc-8c29-p45g	actionpack allows remote code execution via application's unrestricted use of render method

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00057.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00080.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00083.html
http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00086.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00006.html
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00053.html
http://weblog.rubyonrails.org/2016/2/29/Rails-4-2-5-2-4-1-14-2-3-2-22-2-have-been-released/
http://www.debian.org/security/2016/dsa-3509
http://www.securityfocus.com/bid/83725
http://www.securitytracker.com/id/1035122
https://groups.google.com/forum/#!msg/rubyonrails-security/ly-IH-fxr_Q/WLoOhcMZIAAJ
https://groups.google.com/forum/message/raw?msg=rubyonrails-security/ly-IH-fxr_Q/WLoOhcMZIAAJ
https://nvd.nist.gov/vuln/detail/CVE-2016-2098
https://www.cve.org/CVERecord?id=CVE-2016-2098
https://www.exploit-db.com/exploits/40086/

History

Sun, 13 Jul 2025 13:45:00 +0000

Type	Values Removed	Values Added
Metrics	epss `{'score': 0.8743}`	epss `{'score': 0.84091}`

MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2016-04-07T23:00:00

Updated: 2024-08-05T23:17:50.698Z

Reserved: 2016-01-29T00:00:00

Link: CVE-2016-2098

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2016-04-07T23:59:06.643

Modified: 2025-04-12T10:46:40.837

Link: CVE-2016-2098

Redhat

Severity : Important

Publid Date: 2016-02-29T00:00:00Z

Links: CVE-2016-2098 - Bugzilla

OpenCVE Enrichment

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object