CVE-2024-25126

Rack is a modular Ruby web server interface. Carefully crafted content type headers can cause Rack’s media type parser to take much longer than expected, leading to a possible denial of service vulnerability (ReDos 2nd degree polynomial). This vulnerability is patched in 3.0.9.1 and 2.2.8.1.

CVSS v3 5.3 MEDIUM

5.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://discuss.rubyonrails.org/t/denial-of-service-vulnerability-in-rack-content-type-parsing/84941
https://github.com/rack/rack/commit/6efb2ceea003c4b195815a614e00438cbd543462
https://github.com/rack/rack/commit/d9c163a443b8cadf4711d84bd2c58cb9ef89cf49
https://github.com/rack/rack/security/advisories/GHSA-22f2-v57c-j9cx
https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack/CVE-2024-25126.yml
https://lists.debian.org/debian-lts-announce/2024/04/msg00022.html
https://security.netapp.com/advisory/ntap-20240510-0005/

Configurations

No configuration.

History

No history.

Information

Published : 2024-02-29 00:15

Updated : 2024-06-10 18:15

NVD link : CVE-2024-25126

Mitre link : CVE-2024-25126

CVE.ORG link : CVE-2024-25126

JSON object : View

Products Affected

No product.

CWE

CWE-1333

Inefficient Regular Expression Complexity

{"id": "CVE-2024-25126", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2024-02-29T00:15:51.200", "references": [{"url": "https://discuss.rubyonrails.org/t/denial-of-service-vulnerability-in-rack-content-type-parsing/84941", "source": "security-advisories@github.com"}, {"url": "https://github.com/rack/rack/commit/6efb2ceea003c4b195815a614e00438cbd543462", "source": "security-advisories@github.com"}, {"url": "https://github.com/rack/rack/commit/d9c163a443b8cadf4711d84bd2c58cb9ef89cf49", "source": "security-advisories@github.com"}, {"url": "https://github.com/rack/rack/security/advisories/GHSA-22f2-v57c-j9cx", "source": "security-advisories@github.com"}, {"url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack/CVE-2024-25126.yml", "source": "security-advisories@github.com"}, {"url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00022.html", "source": "security-advisories@github.com"}, {"url": "https://security.netapp.com/advisory/ntap-20240510-0005/", "source": "security-advisories@github.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-1333"}]}], "descriptions": [{"lang": "en", "value": "Rack is a modular Ruby web server interface. Carefully crafted content type headers can cause Rack\u2019s media type parser to take much longer than expected, leading to a possible denial of service vulnerability (ReDos 2nd degree polynomial). This vulnerability is patched in 3.0.9.1 and 2.2.8.1."}, {"lang": "es", "value": "Rack es una interfaz modular de servidor web Ruby. Los encabezados de tipo de contenido cuidadosamente elaborados pueden hacer que el analizador de tipo de medios de Rack demore mucho m\u00e1s de lo esperado, lo que lleva a una posible vulnerabilidad de denegaci\u00f3n de servicio (polinomio de segundo grado de ReDos). Esta vulnerabilidad est\u00e1 parcheada en 3.0.9.1 y 2.2.8.1."}], "lastModified": "2024-06-10T18:15:27.553", "sourceIdentifier": "security-advisories@github.com"}