Lucene search

PRIOn knowledge basePRION:CVE-2022-30122

HistoryDec 05, 2022 - 10:15 p.m.

Denial of service

2022-12-0522:15:00

PRIOn knowledge base

www.prio-n.com

rack

denial of service

vulnerability

multipart parsing

8.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

46.4%

A possible denial of service vulnerability exists in Rack <2.0.9.1, <2.1.4.1 and <2.2.3.1 in the multipart parsing component of Rack.

CPENameOperatorVersion
debian_linuxeq11.0
rackge2.2.0
racklt2.2.3.1
rackge2.1.0
racklt2.1.4.1
rackge1.2
racklt2.0.9.1

Name	Operator	Version
debian_linux	eq	11.0
rack	ge	2.2.0
rack	lt	2.2.3.1
rack	ge	2.1.0
rack	lt	2.1.4.1
rack	ge	1.2
rack	lt	2.0.9.1

References

discuss.rubyonrails.org/t/cve-2022-30122-denial-of-service-vulnerability-in-rack-multipart-parsing/80729

security.gentoo.org/glsa/202310-18

security.netapp.com/advisory/ntap-20231208-0012/

www.debian.org/security/2023/dsa-5530