Test ID:	1.3.6.1.4.1.25623.1.1.1.1.2025.5881
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-5881-1)
Summary:	The remote host is missing an update for the Debian 'rails' package(s) announced via the DSA-5881-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'rails' package(s) announced via the DSA-5881-1 advisory. Affected Software/OS: 'rails' package(s) on Debian 12. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2023-28362 Common Vulnerability Exposure (CVE) ID: CVE-2023-38037 Common Vulnerability Exposure (CVE) ID: CVE-2024-26144 https://discuss.rubyonrails.org/t/possible-sensitive-session-information-leak-in-active-storage/84945 https://github.com/rails/rails/commit/723f54566023e91060a67b03353e7c03e7436433 https://github.com/rails/rails/commit/78fe149509fac5b05e54187aaaef216fbb5fd0d3 https://github.com/rails/rails/security/advisories/GHSA-8h22-8cf7-hq6g https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activestorage/CVE-2024-26144.yml Common Vulnerability Exposure (CVE) ID: CVE-2024-28103 https://github.com/rails/rails/commit/35858f1d9d57f6c4050a8d9ab754bd5d088b4523 https://github.com/rails/rails/security/advisories/GHSA-fwhr-88qx-h9g7 Common Vulnerability Exposure (CVE) ID: CVE-2024-41128 Common Vulnerability Exposure (CVE) ID: CVE-2024-47887 Common Vulnerability Exposure (CVE) ID: CVE-2024-47888 Common Vulnerability Exposure (CVE) ID: CVE-2024-47889 Common Vulnerability Exposure (CVE) ID: CVE-2024-54133
Copyright	Copyright (C) 2025 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.