A possible denial of service vulnerability exists in Rack <2.0.9.1, <2.1.4.1 and <2.2.3.1 in the multipart parsing component of Rack.
References
Link | Resource |
---|---|
https://discuss.rubyonrails.org/t/cve-2022-30122-denial-of-service-vulnerability-in-rack-multipart-parsing/80729 | Third Party Advisory |
https://security.gentoo.org/glsa/202310-18 | Third Party Advisory |
https://security.netapp.com/advisory/ntap-20231208-0012/ | Third Party Advisory |
https://www.debian.org/security/2023/dsa-5530 | Third Party Advisory |
Configurations
History
20 Dec 2023, 03:02
Type | Values Removed | Values Added |
---|---|---|
References | () https://security.gentoo.org/glsa/202310-18 - Third Party Advisory | |
References | () https://security.netapp.com/advisory/ntap-20231208-0012/ - Third Party Advisory | |
References | () https://www.debian.org/security/2023/dsa-5530 - Third Party Advisory | |
First Time |
Debian
Debian debian Linux |
|
CPE | cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:* |
08 Dec 2023, 22:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
30 Oct 2023, 12:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
22 Oct 2023, 19:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
21 Jul 2023, 16:56
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-1333 |
07 Dec 2022, 04:39
Type | Values Removed | Values Added |
---|---|---|
First Time |
Rack Project rack
Rack Project |
|
References | (MISC) https://discuss.rubyonrails.org/t/cve-2022-30122-denial-of-service-vulnerability-in-rack-multipart-parsing/80729 - Third Party Advisory | |
CPE | cpe:2.3:a:rack_project:rack:*:*:*:*:*:*:*:* | |
CWE | CWE-400 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
05 Dec 2022, 23:40
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-12-05 22:15
Updated : 2023-12-20 03:02
NVD link : CVE-2022-30122
Mitre link : CVE-2022-30122
CVE.ORG link : CVE-2022-30122
JSON object : View
Products Affected
rack_project
- rack
debian
- debian_linux