7.5

CVSS Score

3.1

Basic Information

CVE ID

CVE-2023-27530

GHSA ID

GHSA-3h57-hmj3-gj3p

EPSS Score

0.83115%

CWE

CWE-400

Published

3/8/2023

Updated

2/13/2025

KEV Status

Technology

Ruby

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2023-27530

CVE-2023-27530: Rack has possible DoS Vulnerability in Multipart MIME parsing

There is a possible DoS vulnerability in the Multipart MIME parsing code in Rack. This vulnerability has been assigned the CVE identifier CVE-2023-27530.

Versions Affected: All. Not affected: None Fixed Versions: 3.0.4.2, 2.2.6.3, 2.1.4.3, 2.0.9.3

Impact

The Multipart MIME parsing code in Rack limits the number of file parts, but does not limit the total number of parts that can be uploaded. Carefully crafted requests can abuse this and cause multipart parsing to take longer than expected.

All users running an affected release should either upgrade or use one of the workarounds immediately.

Workarounds

A proxy can be configured to limit the POST body size which will mitigate this issue.

(GitHub Advisory)

7.5

CVSS Score

3.1

Basic Information

CVE ID

CVE-2023-27530

GHSA ID

GHSA-3h57-hmj3-gj3p

EPSS Score

0.83115%

CWE

CWE-400

Published

3/8/2023

Updated

2/13/2025

KEV Status

Technology

Ruby

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
rack	rubygems	< 2.0.9.3	2.0.9.3
rack	rubygems	>= 2.1.0, < 2.1.4.3	2.1.4.3
rack	rubygems	>= 2.2.0, < 2.2.6.3	2.2.6.3
rack	rubygems	>= 3.0.0, < 3.0.4.2	3.0.4.2

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from Rack's multipart parser not limiting total parts while only restricting file parts. The root functions are in Rack::Multipart::Parser, which processes MIME data. The primary parsing loop in #parse would iterate through all parts without a global limit, and boundary handling in #fast_forward_to_first_boundary could exacerbate inefficiencies. These conclusions align with the described vulnerability mechanism (uncontrolled part count leading to DoS) and Rack's known architecture.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

T**r* is * possi*l* *oS vuln*r**ility in t** Multip*rt MIM* p*rsin* *o** in R**k. T*is vuln*r**ility **s ***n *ssi*n** t** *V* i**nti*i*r *V*-****-*****. V*rsions *****t**: *ll. Not *****t**: Non* *ix** V*rsions: *.*.*.*, *.*.*.*, *.*.*.*, *.*.*.*

Reasoning

T** vuln*r**ility st*ms *rom R**k's multip*rt p*rs*r not limitin* tot*l p*rts w*il* only r*stri*tin* *il* p*rts. T** root *un*tions *r* in R**k::Multip*rt::P*rs*r, w*i** pro**ss*s MIM* **t*. T** prim*ry p*rsin* loop in #p*rs* woul* it*r*t* t*rou** *l

7.5

Basic Information

Concerned about an active attack path?

CVE-2023-27530: Rack has possible DoS Vulnerability in Multipart MIME parsing

Impact

Workarounds

7.5

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI