Denial of Service Vulnerability in Action View
Published: December 03, 2013
SECURITY IDENTIFIERS
- CVE: CVE-2013-6414 (NVD)
- GHSA: GHSA-mpxf-gcw2-pw5q
- OSVDB: OSVDB-100525
- Vendor Advisory: https://groups.google.com/forum/#!topic/ruby-security-ann/A-ebV4WxzKg
GEM
FRAMEWORK
SEVERITY
CVSS v2.0: 5.0 (Medium)
UNAFFECTED VERSIONS
~> 2.3.0
PATCHED VERSIONS
~> 3.2.16
>= 4.0.2
DESCRIPTION
There is a denial of service vulnerability in the header handling component of Action View.