ADVISORIES
- CVE-2013-0184 (NVD)
- GHSA-v882-ccj6-jc48
- OSVDB-89327
GEM
SEVERITY
CVSS v2.0: 4.3 (Medium)
PATCHED VERSIONS
- ~> 1.1.5
- ~> 1.2.7
- ~> 1.3.9
- >= 1.4.4
DESCRIPTION
Unspecified vulnerability in Rack::Auth::AbstractRequest in Rack 1.1.x before 1.1.5, 1.2.x before 1.2.7, 1.3.x before 1.3.9, and 1.4.x before 1.4.4 allows remote attackers to cause a denial of service via unknown vectors related to "symbolized arbitrary strings."