Vulnerabilities > Rack Project > Rack > 3.0.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-03-10 | CVE-2023-27530 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products A DoS vulnerability exists in Rack <v3.0.4.2, <v2.2.6.3, <v2.1.4.3 and <v2.0.9.3 within in the Multipart MIME parsing code in which could allow an attacker to craft requests that can be abuse to cause multipart parsing to take longer than expected. | 7.5 |
2023-02-09 | CVE-2022-44570 | Unspecified vulnerability in Rack Project Rack A denial of service vulnerability in the Range header parsing component of Rack >= 1.5.0. | 7.5 |