Latest vulnerabilities for "rack rack"

Where

Sort:

Rack RackRack is a modular Ruby web server interface. Prior to versions 2.2.20, 3.1.18, and 3.2.3, `Rack::Req…

Risk 33

Severity

First published (updated )

REDHAT-BUG-2403180

rubygems/rackRack has Possible Information Disclosure Vulnerability

Risk 31

Severity

5.8

First published (updated )

CVE-2025-61780

Rack RackRack is a modular Ruby web server interface. In versions prior to 2.2.19, 3.1.17, and 3.2.2, `Rack::…

Risk 19

Severity

First published (updated )

REDHAT-BUG-2402200

Rack Rack RubyRack's multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)

Risk 43

Severity

7.5

First published (updated )

CVE-2025-61772

Rack RackRack is a modular Ruby web server interface. In versions prior to 2.2.19, 3.1.17, and 3.2.2, `Rack::…

Risk 33

Severity

First published (updated )

REDHAT-BUG-2402174

Rack Rack RubyRack's multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)

Risk 43

Severity

7.5

First published (updated )

CVE-2025-61771

Rack Rack RubyRack's unbounded multipart preamble buffering enables DoS (memory exhaustion)

Risk 43

Severity

7.5

First published (updated )

CVE-2025-61770

Rack RackRack is a modular Ruby web server interface. Prior to version 2.2.18, Rack::QueryParser enforces its…

Risk 19

Severity

First published (updated )

REDHAT-BUG-2398167

Rack RackRack QueryParser has an unsafe default allowing params_limit bypass via semicolon-separated parameters

Risk 43

Severity

7.5

First published (updated )

CVE-2025-59830

rubygems/rackUnbounded-Parameter DoS in Rack::QueryParser

Risk 31

Severity

7.5

EPSS

1.09%

First published (updated )

CVE-2025-46727

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Trending

Rack RackRack is a modular Ruby web server interface. Prior to versions 2.2.20, 3.1.18, and 3.2.3, `Rack::Req…

rubygems/rackRack has Possible Information Disclosure Vulnerability

Rack RackRack is a modular Ruby web server interface. In versions prior to 2.2.19, 3.1.17, and 3.2.2, `Rack::…

Rack Rack RubyRack's multipart parser buffers unbounded per-part headers, enabling DoS (memory exhaustion)

Rack RackRack is a modular Ruby web server interface. In versions prior to 2.2.19, 3.1.17, and 3.2.2, `Rack::…

Don't miss critical vulnerabilities

Rack Rack RubyRack's multipart parser buffers large non‑file fields entirely in memory, enabling DoS (memory exhaustion)

Rack Rack RubyRack's unbounded multipart preamble buffering enables DoS (memory exhaustion)

Rack RackRack is a modular Ruby web server interface. Prior to version 2.2.18, Rack::QueryParser enforces its…

Rack RackRack QueryParser has an unsafe default allowing params_limit bypass via semicolon-separated parameters

rubygems/rackUnbounded-Parameter DoS in Rack::QueryParser

Don't miss critical vulnerabilities

Company

Resources

Contact