CISA Alerts on Active Exploit of Ruby on Rails Path Traversal Flaw
Posted: Wed Jul 09, 2025 5:20 am
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding the active exploitation of a critical path traversal vulnerability in Ruby on Rails, designated as CVE-2019-5418.
The agency added this five-year-old security flaw to its Known Exploited Vulnerabilities (KEV) catalog on July 7, 2025, signaling that threat actors are actively leveraging this vulnerability in real-world attacks.
https://gbhackers.com/cisa-alerts-ruby- ... rsal-flaw/
The agency added this five-year-old security flaw to its Known Exploited Vulnerabilities (KEV) catalog on July 7, 2025, signaling that threat actors are actively leveraging this vulnerability in real-world attacks.
https://gbhackers.com/cisa-alerts-ruby- ... rsal-flaw/