A possible denial of service vulnerability exists in Rack <2.0.9.1, <2.1.4.1 and <2.2.3.1 in the multipart parsing component of Rack.
References
| Link | Resource |
|---|---|
| https://discuss.rubyonrails.org/t/cve-2022-30122-denial-of-service-vulnerability-in-rack-multipart-parsing/80729 | Third Party Advisory |
| https://www.debian.org/security/2023/dsa-5530 | Third Party Advisory |
| https://security.gentoo.org/glsa/202310-18 | Third Party Advisory |
| https://security.netapp.com/advisory/ntap-20231208-0012/ | Third Party Advisory |
Configurations
History
20 Dec 2023, 03:02
| Type | Values Removed | Values Added |
|---|---|---|
| References | (GENTOO) https://security.gentoo.org/glsa/202310-18 - Third Party Advisory | |
| References | (DEBIAN) https://www.debian.org/security/2023/dsa-5530 - Third Party Advisory | |
| References | () https://security.netapp.com/advisory/ntap-20231208-0012/ - Third Party Advisory | |
| First Time |
Debian
Debian debian Linux |
|
| CPE | cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:* |
08 Dec 2023, 22:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
30 Oct 2023, 12:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
22 Oct 2023, 19:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
21 Jul 2023, 16:56
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-1333 |
Information
Published : 2022-12-05 22:15
Updated : 2023-12-20 03:02
NVD link : CVE-2022-30122
Mitre link : CVE-2022-30122
JSON object : View
Products Affected
rack_project
- rack
debian
- debian_linux
CWE
CWE-1333
Inefficient Regular Expression Complexity