English
Français
Light
Dark
System

Alert System

Stay informed at all times
Create an account Open a free account Login Manage your alerts

Rack Project Rack 2.1.2

CPE Details

Rack Project Rack 2.1.2
rack_project
rack
2.1.2
2020-06-24 14:14 +00:00
2020-06-24 14:14 +00:00
CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.
Alert management

CPE Name: cpe:2.3:a:rack_project:rack:2.1.2:*:*:*:*:*:*:*

Informations

Vendor

rack_project

Product

rack

Version

2.1.2

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2022-30122 2022-12-04 23:00 +00:00 A possible denial of service vulnerability exists in Rack <2.0.9.1, <2.1.4.1 and <2.2.3.1 in the multipart parsing component of Rack.
7.5
HIGH
CVE-2022-30123 2022-12-04 23:00 +00:00 A sequence injection vulnerability exists in Rack <2.0.9.1, <2.1.4.1 and <2.2.3.1 which could allow is a possible shell escape in the Lint and CommonLogger components of Rack.
10
CRITICAL
CVE-2020-8161 2020-07-01 22:00 +00:00 A directory traversal vulnerability exists in rack < 2.2.0 that allows an attacker perform directory traversal vulnerability in the Rack::Directory app that is bundled with Rack which could result in information disclosure.
8.6
HIGH
CVE-2020-8184 2020-06-18 22:00 +00:00 A reliance on cookies without validation/integrity check security vulnerability exists in rack < 2.2.3, rack < 2.1.4 that makes it is possible for an attacker to forge a secure or host-only cookie prefix.
7.5
HIGH

More information
Click on the button to the left (OFF), to authorize the inscription of cookie improving the functionalities of the site. Click on the button to the left (Accept all), to unauthorize the inscription of cookie improving the functionalities of the site.