{"id":"CVE-2020-8151","details":"There is a possible information disclosure issue in Active Resource \u003cv5.1.1 that could allow an attacker to create specially crafted requests to access data in an unexpected way and possibly leak information.","aliases":["GHSA-46j2-xjgp-jrfm"],"modified":"2026-03-14T10:33:26.967796Z","published":"2020-05-12T13:15:12.937Z","related":["SUSE-RU-2020:2072-1","SUSE-SU-2020:1901-1"],"references":[{"type":"WEB","url":"https://groups.google.com/forum/#%21topic/rubyonrails-security/pktoF4VmiM8"},{"type":"WEB","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/P7B7A4H22DZ522HLDS3JX3NX2CXIOZSR/"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/rails/activeresource","events":[{"introduced":"0"},{"fixed":"f58dc9326b6bf311698194a851b5aa05cd6997b6"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"5.1.1"}]}}],"versions":["v4.0.0","v4.0.0.beta1","v5.0.0","v5.1.0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-8151.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"33"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"}]}