Bugzilla – Bug 1129268
VUL-1: CVE-2019-5420: rubygem-rails-4_2,rubygem-rails-5_1,rubygem-rails-3_2: possible remote code executing in Rails
Last modified: 2019-06-12 19:55:18 UTC
There is a possible a possible remote code executing exploit in Rails when in
development mode. This vulnerability has been assigned the CVE identifier
Versions Affected: 6.0.0.X, 5.2.X.
Not affected: None.
Fixed Versions: 6.0.0.beta3, 220.127.116.11
we only ship the older versions, which are not affected.