5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.19 Low
EPSS
Percentile
95.5%
actionpack/lib/action_view/lookup_context.rb in Action View in Ruby on Rails allows remote attackers to cause a denial of service (memory consumption) via a header containing an invalid MIME type that leads to excessive caching.
CPE | Name | Operator | Version |
---|---|---|---|
gem/actionpack | lt | 3.2.16 | |
gem/actionpack | ge | 4.0 | |
gem/actionpack | lt | 4.0.2 |