Miggo Logo

CVE-2018-16470: Rack vulnerable to Denial of Service

7.5

CVSS Score
3.0

Basic Information

EPSS Score
0.39838%
Published
11/15/2018
Updated
11/4/2023
KEV Status
No
Technology
TechnologyRuby

Technical Details

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
rackrubygems>= 2.0.4, < 2.0.62.0.6

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis:
In progress

WAF Protection Rules

WAF Rule

T**r* is * possi*l* *oS vuln*r**ility in t** multip*rt p*rs*r in R**k ***or* *.*.*. Sp**i*lly *r**t** r*qu*sts **n **us* t** multip*rt p*rs*r to *nt*r * p*t*olo*i**l st*t*, **usin* t** p*rs*r to us* *PU r*sour**s *isproportion*t* to t** r*qu*st siz*.

Reasoning

No *n*lysis *v*il**l*