Описание
Sinatra is a domain-specific language for creating web applications in Ruby. In versions prior to 4.2.0, there is a denial of service vulnerability in the If-Match and If-None-Match header parsing component of Sinatra, if the etag method is used when constructing the response. Carefully crafted input can cause If-Match and If-None-Match header parsing in Sinatra to take an unexpected amount of time, possibly resulting in a denial of service attack vector. This header is typically involved in generating the ETag header value. Any applications that use the etag method when generating a response are impacted. Version 4.2.0 fixes the issue.
A flaw was found in Sinatra. A Regular Expression Denial of Service (ReDoS) vulnerability can be triggered when parsing the If-Match and If-None-Match HTTP headers. A remote attacker can exploit this issue by sending a specially crafted header to an application endpoint that uses the etag method, causing a excessive CPU consumption and potentially resulting in a denial of service.
Отчет
This flaw can only be exploited in applications using the etag method to generate a response and if they are using Ruby below version 3.2, limiting the exposure of this issue. The most likely security impact of this vulnerability is an unexpected amount of time to parse the If-Match and If-None-Match HTTP headers, potentially resulting in a degraded application performance but not completely deny service to legitimate users. Due to this reason, this flaw has been rated with a moderate severity.
Меры по смягчению последствий
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat 3scale API Management Platform 2 | 3scale-amp21/zync | Will not fix | ||
| Red Hat 3scale API Management Platform 2 | 3scale-amp22/zync | Will not fix | ||
| Red Hat 3scale API Management Platform 2 | 3scale-amp24/zync | Will not fix | ||
| Red Hat 3scale API Management Platform 2 | 3scale-amp25/zync | Will not fix | ||
| Red Hat 3scale API Management Platform 2 | 3scale-amp26/zync | Will not fix | ||
| Red Hat 3scale API Management Platform 2 | 3scale-amp2/zync-rhel7 | Will not fix | ||
| Red Hat 3scale API Management Platform 2 | 3scale-amp2/zync-rhel8 | Will not fix | ||
| Red Hat 3scale API Management Platform 2 | 3scale-amp2/zync-rhel9 | Will not fix | ||
| Red Hat Enterprise Linux 10 | pcs | Not affected | ||
| Red Hat Enterprise Linux 7 | pcs | Not affected |
Показывать по
Ссылки на источники
Дополнительная информация
Статус:
EPSS
5.3 Medium
CVSS3
Связанные уязвимости
Sinatra is a domain-specific language for creating web applications in Ruby. In versions prior to 4.2.0, there is a denial of service vulnerability in the `If-Match` and `If-None-Match` header parsing component of Sinatra, if the `etag` method is used when constructing the response. Carefully crafted input can cause `If-Match` and `If-None-Match` header parsing in Sinatra to take an unexpected amount of time, possibly resulting in a denial of service attack vector. This header is typically involved in generating the `ETag` header value. Any applications that use the `etag` method when generating a response are impacted. Version 4.2.0 fixes the issue.
Sinatra is a domain-specific language for creating web applications in Ruby. In versions prior to 4.2.0, there is a denial of service vulnerability in the `If-Match` and `If-None-Match` header parsing component of Sinatra, if the `etag` method is used when constructing the response. Carefully crafted input can cause `If-Match` and `If-None-Match` header parsing in Sinatra to take an unexpected amount of time, possibly resulting in a denial of service attack vector. This header is typically involved in generating the `ETag` header value. Any applications that use the `etag` method when generating a response are impacted. Version 4.2.0 fixes the issue.
Sinatra is a domain-specific language for creating web applications in ...
Sinatra is vulnerable to ReDoS through ETag header value generation
Уязвимость парсера фреймворка разработки веб-приложений на Ruby Sinatra, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
5.3 Medium
CVSS3