0.001 Low
EPSS
Percentile
41.0%
rack is vulnerable to denial-of-service (DoS) attacks. The vulnerability exists in the multipart parser of rack where it is possible for a request to cause the multipart parser to cause CPU exhaustion.
github.com/rack/rack/commit/37c1160b2360074d20858792f23a7eb3afeabebd
github.com/rubysec/ruby-advisory-db/pull/368
groups.google.com/forum/#!msg/rubyonrails-security/U_x-YkfuVTg/xhvYAmp6AAAJ