CVE-2024-25126 | rubygem-rack Header Content-Type denial of service

Posted by Angelo Barbosa | Feb 23, 2024 | CVE

A vulnerability was found in rubygem-rack. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component Header Handler. The manipulation of the argument Content-Type leads to denial of service.

This vulnerability is known as CVE-2024-25126. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-25126 | rubygem-rack Header Content-Type denial of service

Related Posts

CVE-2023-39206: Zoom Client buffer overflow

CVE-2023-48715 | Enalean Tuleap Community Edition/Tuleap Enterprise Edition cross site scripting

CVE-2024-24575 | libgit2 up to 1.6.4/1.7.1 src/libgit2/revparse.c git_revparse_single resource consumption (GHSA-54mf-x2rh-hq9v)

CVE-2024-34003 | moodle mod_workshop file inclusion