Lucene search
K

4 matches found

Wolfi
Wolfi
added 2026/04/11 2:52 a.m.6 views

CVE-2026-34763 vulnerabilities

Vulnerabilities for packages: ruby4.0-rack, ruby3.4-rails, ruby3.3-rack, ruby3.2-rails, ruby3.4-rack, ruby3.2-rack, logstash, kube-fluentd-operator...

5.3CVSS6.1AI score0.0024EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/04 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-34763

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Directory interpolates the configured root path directly into a...

5.3CVSS5.8AI score0.0024EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/03 8:25 p.m.4 views

CVE-2026-34763

A flaw was found in Rack. A remote attacker could exploit a vulnerability in Rack::Directory's handling of root paths. When the configured root path contains special regular expression characters, the directory listing generation can fail to properly strip the path prefix. This can lead to the...

5.3CVSS5.8AI score0.0024EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/04/02 4:43 p.m.4 views

CVE-2026-34763

Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Directory interpolates the configured root path directly into a regular expression when deriving the displayed directory path. If root contains regex metacharacters such as +, , or ., the prefix...

5.3CVSS5.2AI score0.0024EPSS
Exploits0
Rows per page
Query Builder