Lucene search
K

8 matches found

Ubuntu
Ubuntu
added 2026/04/17 12:23 a.m.9 views

USN-8182-1: Rack vulnerabilities

Andrew Lacambra discovered that Rack did not properly parse certain regular expressions. An attacker could possibly use this issue to bypass network security filters. This issue only affected Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 24.04 LTS, and Ubuntu 25.10. CVE-2026-26961 William T. Nelson...

7.5CVSS5.9AI score0.00475EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2025/11/11 12:0 a.m.2 views

RHEL 9 : pcs (RHSA-2025:20962)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:20962 advisory. The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: rubygem-rack: Rack...

7.5CVSS7.3AI score0.00868EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2025/11/10 1:37 a.m.6 views

Important: Red Hat Security Advisory: pcs security update

An update for pcs is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability...

7.5CVSS6.8AI score0.00868EPSS
Exploits0References6
Rockylinux
Rockylinux
added 2025/11/06 9:6 a.m.5 views

pcs security update

An update is available for pcs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The pcs packages provide a command-line configuration system for the Pacemaker an...

7.5CVSS6.7AI score0.00868EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.0 views

RHEL 8 : pcs (RHSA-2025:19734)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:19734 advisory. The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: rubygem-rack: Rack...

7.5CVSS7.3AI score0.00868EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2024/04/30 2:37 p.m.1 views

rubygem-rack: Possible DoS Vulnerability with Range Header in Rack

A denial of service DoS vulnerability was found in rubygem-rack in how it parses Range Header. Carefully crafted range headers can cause a server to respond with an unexpectedly large response. Responding with large responses could lead to a denial of service issue...

7.5CVSS6.6AI score0.01612EPSS
Exploits1References5
Amazon
Amazon
added 2024/03/18 12:0 a.m.4 views

Medium: pcs

Issue Overview: A Denial of Service DoS vulnerability was found in rubygem-rack in how it parses Content-Type. Carefully crafted content type headers can cause Rack's media type parser to take much longer than expected, leading to a possible denial of service vulnerability. CVE-2024-25126 A Denia...

7.5CVSS6.8AI score0.35376EPSS
Exploits2
FreeBSD
FreeBSD
added 2012/05/31 12:0 a.m.41 views

rubygem-activerecord -- multiple vulnerabilities

rubygem-activerecord -- multiple vulernabilities Due to the way Active Record interprets parameters in combination with the way that Rack parses query parameters, it is possible for an attacker to issue unexpected database queries with "IS NULL" where clauses. This issue does not let an attacker...

6.4CVSS7.9AI score0.046EPSS
Exploits1References2
Rows per page
Query Builder