all InfoSec News logo
all InfoSec News - Your InfoSec news aggregator
Log in Sign up
all InfoSec News

Rack ReDoS Vulnerability in HTTP Accept Headers ParsingRack is a modular Ruby...

Add to bookmarks
July 2, 2024, 3:57 p.m. |

CVE | THREATINT - NEW cve.threatint.com

Rack is a modular Ruby web server interface. Starting in version 3.1.0 and prior to version 3.1.5, Regular Expression Denial of Service (ReDoS) vulnerability exists in the `Rack::Request::Helpers` ...

accept denial of service headers http interface modular redos regular regular expression request ruby server service version vulnerability web web server

Visit resource

More from cve.threatint.com / CVE | THREATINT - NEW

The built-in SSH server of Gogs through 0.13.0 allows argument injection in i... 3 hours ago | cve.threatint.com
argument attackers can code +9
Gogs through 0.13.0 allows deletion of internal files. 3 hours ago | cve.threatint.com
deletion files internal
Gogs through 0.13.0 allows argument injection during the previewing of changes. 3 hours ago | cve.threatint.com
argument injection
Gogs through 0.13.0 allows argument injection during the tagging of a new rel... 3 hours ago | cve.threatint.com
argument injection new release release +1
Exim through 4.97.1 misparses a multiline RFC 2231 header filename, and thus ... 4 hours ago | cve.threatint.com
attackers blocking bypass can +7
VMware Cloud Director Availability contains an HTML injection vulnerability. ... 5 hours ago | cve.threatint.com
access actor availability can +13
Information exposure vulnerability in the MRW plug-inInformation exposure vul... 6 hours ago | cve.threatint.com
attacker customers exposure information +4
QR/demoapp/qr_image.php in Asial JpGraph Professional through 4.2.6-pro allow... 6 hours ago | cve.threatint.com
arbitrary code attackers code data +6
Kaiten 57.128.8 allows remote attackers to enumerate user accounts via a craf... 6 hours ago | cve.threatint.com
account accounts attackers login +2

Jobs in InfoSec / Cybersecurity

Find Talent

Software Engineer

@ Booz Allen Hamilton | USA, VA, McLean (8283 Greensboro Dr, Hamilton)
View on infosec-jobs.com

SOC Level 1 Engineer

@ Groupon | Remote - India
View on infosec-jobs.com

Senior Technology Auditor (Continuous Process Monitoring)

@ CNA Insurance | US- IL40- Chicago-151N Frankln
View on infosec-jobs.com

Sr. Director, Tech Process Management (ES Risk)

@ Capital One | McLean, VA
View on infosec-jobs.com

AVP, Pre-Sales and Professional Services for Group Benefits & Affinity

@ Manulife | CAN, Ontario, Toronto, 250 Bloor Street East
View on infosec-jobs.com

Software Engineer III

@ Walmart | IN KA BANGALORE Home Office PW II
View on infosec-jobs.com