Описание
A directory traversal vulnerability exists in rack < 2.2.0 that allows an attacker perform directory traversal vulnerability in the Rack::Directory app that is bundled with Rack which could result in information disclosure.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1.6.4-4ubuntu0.2 |
| devel | not-affected | 2.1.1-5 |
| eoan | ignored | end of life |
| esm-apps/bionic | released | 1.6.4-4ubuntu0.2 |
| esm-apps/focal | released | 2.0.7-2ubuntu0.1 |
| esm-apps/jammy | not-affected | 2.1.1-5 |
| esm-apps/xenial | released | 1.6.4-3ubuntu0.2 |
| esm-infra-legacy/trusty | released | 1.5.2-3+deb8u3 |
| focal | released | 2.0.7-2ubuntu0.1 |
| groovy | not-affected | 2.1.1-5 |
Показывать по
Ссылки на источники
EPSS
5 Medium
CVSS2
8.6 High
CVSS3
Связанные уязвимости
A directory traversal vulnerability exists in rack < 2.2.0 that allows an attacker perform directory traversal vulnerability in the Rack::Directory app that is bundled with Rack which could result in information disclosure.
A directory traversal vulnerability exists in rack < 2.2.0 that allows an attacker perform directory traversal vulnerability in the Rack::Directory app that is bundled with Rack which could result in information disclosure.
A directory traversal vulnerability exists in rack < 2.2.0 that allows ...
Directory traversal in Rack::Directory app bundled with Rack
Уязвимость функции check_forbidden из rack/directory.rb модульного интерфейса между веб-серверами и веб-приложениями Rack, позволяющая нарушителю получить доступ к конфиденциальным данным
EPSS
5 Medium
CVSS2
8.6 High
CVSS3