11 Jui 2021
Vulnérabilité CVE-2021-22902 CVE Vulnerability
The actionpack ruby gem (a framework for handling and responding to web requests in Rails) before 6.0.3.7, 6.1.3.2 suffers from a possible denial of service vulnerability in the Mime type parser of Action Dispatch. Carefully crafted Accept headers can cause the mime type parser in Action Dispatch to do catastrophic backtracking in the regular expression engine. (CVSS:0.0) (Last Update:2021-06-11)
Vulnerability Details : The actionpack ruby gem (a framework for handling and responding to web requests in Rails) before 6.0.3.7, 6.1.3.2 suffers from a possible denial of service vulnerability in the Mime type parser of Action Dispatch. Carefully crafted Accept headers can cause the mime type parser in Action Dispatch to do catastrophic backtracking in the regular expression engine. Publish Date : 2021-06-11 Last Update Date : 2021-06-11 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2021-22902
- References For CVE-2021-22902
| |||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2021-22902There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |