0.003 Low
EPSS
Percentile
71.4%
There is a possible denial of service vulnerability in Action View (Rails) <5.2.2.1, <5.1.6.2, <5.0.7.2, <4.2.11.1 where specially crafted accept headers can cause action view to consume 100% cpu and make the server unresponsive.
bugzilla.redhat.com/show_bug.cgi?id=1689160
groups.google.com/forum/#!msg/rubyonrails-security/GN7w9fFAQeI/0iQIiLP2CgAJ
nvd.nist.gov/vuln/detail/CVE-2019-5419
www.cve.org/CVERecord?id=CVE-2019-5419