CVE-2022-30123
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
A sequence injection vulnerability exists in Rack <2.0.9.1, <2.1.4.1 and <2.2.3.1 which could allow is a possible shell escape in the Lint and CommonLogger components of Rack.
| CWE | CWE-150 |
| Vendor | n/a |
| Product | https://github.com/rack/rack |
| Published | Dec 5, 2022 |
| Last Updated | Aug 3, 2024 |
Stay Ahead of the Next One
Get instant alerts for n/a https://github.com/rack/rack
Be the first to know when new unknown vulnerabilities affecting n/a https://github.com/rack/rack are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
n/a / https://github.com/rack/rack
2.0.9.1, 2.1.4.1, 2.2.3.1
References
discuss.rubyonrails.org: https://discuss.rubyonrails.org/t/cve-2022-30123-possible-shell-escape-sequence-injection-vulnerability-in-rack/80728 debian.org: https://www.debian.org/security/2023/dsa-5530 security.gentoo.org: https://security.gentoo.org/glsa/202310-18 security.netapp.com: https://security.netapp.com/advisory/ntap-20231208-0011/