CVE-2013-0277
CRITICAL
10.0
CVSS Severity Score
Vulnerability Description
ActiveRecord in Ruby on Rails before 2.3.17 and 3.x before 3.1.0 allows remote attackers to cause a denial of service or execute arbitrary code via crafted serialized attributes that cause the +serialize+ helper to deserialize arbitrary YAML.
Affected Platforms (CPE)
📦
Rubyonrails
Rails
= 3.0.0📦
Rubyonrails
Rails
= 3.0.0📦
Rubyonrails
Rails
= 3.0.0📦
Rubyonrails
Rails
= 3.0.0📦
Rubyonrails
Rails
= 3.0.0📦
Rubyonrails
Rails
= 3.0.0📦
Rubyonrails
Rails
= 3.0.0📦
Rubyonrails
Rails
= 3.0.1📦
Rubyonrails
Rails
= 3.0.1📦
Rubyonrails
Rails
= 3.0.2📦
Rubyonrails
Rails
= 3.0.2📦
Rubyonrails
Rails
= 3.0.3📦
Rubyonrails
Rails
= 3.0.4📦
Rubyonrails
Rails
= 3.0.5📦
Rubyonrails
Rails
= 3.0.5📦
Rubyonrails
Rails
= 3.0.6📦
Rubyonrails
Rails
= 3.0.6📦
Rubyonrails
Rails
= 3.0.6📦
Rubyonrails
Rails
= 3.0.7📦
Rubyonrails
Rails
= 3.0.7📦
Rubyonrails
Rails
= 3.0.7📦
Rubyonrails
Rails
= 3.0.8📦
Rubyonrails
Rails
= 3.0.8📦
Rubyonrails
Rails
= 3.0.8📦
Rubyonrails
Rails
= 3.0.8📦
Rubyonrails
Rails
= 3.0.8📦
Rubyonrails
Rails
= 3.0.9📦
Rubyonrails
Rails
= 3.0.9📦
Rubyonrails
Rails
= 3.0.9📦
Rubyonrails
Rails
= 3.0.9📦
Rubyonrails
Rails
= 3.0.9📦
Rubyonrails
Rails
= 3.0.9📦
Rubyonrails
Rails
= 3.0.10📦
Rubyonrails
Rails
= 3.0.10📦
Rubyonrails
Rails
= 3.0.11📦
Rubyonrails
Rails
= 3.0.12📦
Rubyonrails
Rails
= 3.0.12📦
Rubyonrails
Rails
= 3.0.13📦
Rubyonrails
Rails
= 3.0.13📦
Rubyonrails
Rails
= 3.0.14📦
Rubyonrails
Rails
= 3.0.16📦
Rubyonrails
Rails
= 3.0.17📦
Rubyonrails
Rails
= 3.0.18📦
Rubyonrails
Rails
= 3.0.19📦
Rubyonrails
Rails
= 3.0.20📦
Rubyonrails
Ruby On Rails
= 3.0.4📦
Rubyonrails
Rails
= 2.3.0📦
Rubyonrails
Rails
= 2.3.1📦
Rubyonrails
Rails
= 2.3.2📦
Rubyonrails
Rails
= 2.3.3📦
Rubyonrails
Rails
= 2.3.4📦
Rubyonrails
Rails
= 2.3.9📦
Rubyonrails
Rails
= 2.3.10📦
Rubyonrails
Rails
= 2.3.11📦
Rubyonrails
Rails
= 2.3.12📦
Rubyonrails
Rails
= 2.3.13📦
Rubyonrails
Rails
= 2.3.14📦
Rubyonrails
Rails
= 2.3.15📦
Rubyonrails