Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Phusion Passenger gem before 3.0.21 and 4.0.x before 4.0.5 for Ruby allows local users to cause a denial of service (prevent application start) or gain privileges by pre-creating a temporary "config" file in a directory with a predictable name in /tmp/ before it is used by the gem.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Phusion Passenger gem 权限许可和访问控制问题漏洞
Vulnerability Description
Phusion Passenger gem是Phusion公司的一个免费的Web服务器和应用程序服务器。 Phusion Passenger gem 3.0.21之前版本、4.0.x版本至4.0.5之前版本存在权限许可和访问控制问题漏洞。本地攻击者利用该漏洞导致系统拒绝服务(阻止应用程序启用)或获取特权。
CVSS Information
N/A
Vulnerability Type
N/A