Response Splitting Vulnerability in Ruby on Rails
Published: August 16, 2011
SECURITY IDENTIFIERS
- CVE: CVE-2011-3186 (NVD)
- GHSA: GHSA-fcqf-h4h4-695m
- OSVDB: OSVDB-74616
- Vendor Advisory: https://groups.google.com/forum/#!topic/rubyonrails-security/b_yTveAph2g
GEM
FRAMEWORK
SEVERITY
CVSS v2.0: 4.3 (Medium)
PATCHED VERSIONS
>= 2.3.13
DESCRIPTION
A response splitting flaw in Ruby on Rails 2.3.x was reported that could allow a remote attacker to inject arbitrary HTTP headers into a response due to insufficient sanitization of the values provided for response content types.