{"dataType": "CVE_RECORD", "cveMetadata": {"cveId": "CVE-2024-26141", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-02-14T17:40:03.688Z", "datePublished": "2024-02-28T23:28:10.503Z", "dateUpdated": "2024-08-28T17:55:43.187Z"}, "containers": {"cna": {"title": "Possible DoS Vulnerability with Range Header in Rack", "problemTypes": [{"descriptions": [{"cweId": "CWE-400", "lang": "en", "description": "CWE-400: Uncontrolled Resource Consumption", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L", "version": "3.1"}}], "references": [{"name": "https://github.com/rack/rack/security/advisories/GHSA-xj5v-6v4g-jfw6", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/rack/rack/security/advisories/GHSA-xj5v-6v4g-jfw6"}, {"name": "https://github.com/rack/rack/commit/4849132bef471adb21131980df745f4bb84de2d9", "tags": ["x_refsource_MISC"], "url": "https://github.com/rack/rack/commit/4849132bef471adb21131980df745f4bb84de2d9"}, {"name": "https://github.com/rack/rack/commit/62457686b26d33a15a254c7768c2076e8e02b48b", "tags": ["x_refsource_MISC"], "url": "https://github.com/rack/rack/commit/62457686b26d33a15a254c7768c2076e8e02b48b"}, {"name": "https://discuss.rubyonrails.org/t/possible-dos-vulnerability-with-range-header-in-rack/84944", "tags": ["x_refsource_MISC"], "url": "https://discuss.rubyonrails.org/t/possible-dos-vulnerability-with-range-header-in-rack/84944"}, {"name": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack/CVE-2024-26141.yml", "tags": ["x_refsource_MISC"], "url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack/CVE-2024-26141.yml"}, {"url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00022.html"}, {"url": "https://security.netapp.com/advisory/ntap-20240510-0007/"}], "affected": [{"vendor": "rack", "product": "rack", "versions": [{"version": ">= 3.0.0, < 3.0.9.1", "status": "affected"}, {"version": ">= 1.3.0, < 2.2.8.1", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-02-28T23:28:10.503Z"}, "descriptions": [{"lang": "en", "value": "Rack is a modular Ruby web server interface. Carefully crafted Range headers can cause a server to respond with an unexpectedly large response. Responding with such large responses could lead to a denial of service issue. Vulnerable applications will use the `Rack::File` middleware or the `Rack::Utils.byte_ranges` methods (this includes Rails applications). The vulnerability is fixed in 3.0.9.1 and 2.2.8.1."}], "source": {"advisory": "GHSA-xj5v-6v4g-jfw6", "discovery": "UNKNOWN"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T23:59:32.578Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/rack/rack/security/advisories/GHSA-xj5v-6v4g-jfw6", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/rack/rack/security/advisories/GHSA-xj5v-6v4g-jfw6"}, {"name": "https://github.com/rack/rack/commit/4849132bef471adb21131980df745f4bb84de2d9", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/rack/rack/commit/4849132bef471adb21131980df745f4bb84de2d9"}, {"name": "https://github.com/rack/rack/commit/62457686b26d33a15a254c7768c2076e8e02b48b", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/rack/rack/commit/62457686b26d33a15a254c7768c2076e8e02b48b"}, {"name": "https://discuss.rubyonrails.org/t/possible-dos-vulnerability-with-range-header-in-rack/84944", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://discuss.rubyonrails.org/t/possible-dos-vulnerability-with-range-header-in-rack/84944"}, {"name": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack/CVE-2024-26141.yml", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack/CVE-2024-26141.yml"}, {"url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00022.html", "tags": ["x_transferred"]}, {"url": "https://security.netapp.com/advisory/ntap-20240510-0007/", "tags": ["x_transferred"]}]}, {"affected": [{"vendor": "rack_project", "product": "rack", "cpes": ["cpe:2.3:a:rack_project:rack:*:*:*:*:*:ruby:*:*"], "defaultStatus": "unknown", "versions": [{"version": "3.0.0", "status": "affected", "lessThan": "3.0.9.1", "versionType": "custom"}, {"version": "1.3.0", "status": "affected", "lessThan": "2.2.8.1", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-03-05T18:23:59.367185Z", "id": "CVE-2024-26141", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-28T17:55:43.187Z"}}]}, "dataVersion": "5.1"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://github.com/rack/rack/security/advisories/GHSA-xj5v-6v4g-jfw6", "name": "https://github.com/rack/rack/security/advisories/GHSA-xj5v-6v4g-jfw6", "tags": ["x_refsource_CONFIRM", "x_transferred"]}, {"url": "https://github.com/rack/rack/commit/4849132bef471adb21131980df745f4bb84de2d9", "name": "https://github.com/rack/rack/commit/4849132bef471adb21131980df745f4bb84de2d9", "tags": ["x_refsource_MISC", "x_transferred"]}, {"url": "https://github.com/rack/rack/commit/62457686b26d33a15a254c7768c2076e8e02b48b", "name": "https://github.com/rack/rack/commit/62457686b26d33a15a254c7768c2076e8e02b48b", "tags": ["x_refsource_MISC", "x_transferred"]}, {"url": "https://discuss.rubyonrails.org/t/possible-dos-vulnerability-with-range-header-in-rack/84944", "name": "https://discuss.rubyonrails.org/t/possible-dos-vulnerability-with-range-header-in-rack/84944", "tags": ["x_refsource_MISC", "x_transferred"]}, {"url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack/CVE-2024-26141.yml", "name": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack/CVE-2024-26141.yml", "tags": ["x_refsource_MISC", "x_transferred"]}, {"url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00022.html", "tags": ["x_transferred"]}, {"url": "https://security.netapp.com/advisory/ntap-20240510-0007/", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T23:59:32.578Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-26141", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-03-05T18:23:59.367185Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:rack_project:rack:*:*:*:*:*:ruby:*:*"], "vendor": "rack_project", "product": "rack", "versions": [{"status": "affected", "version": "3.0.0", "lessThan": "3.0.9.1", "versionType": "custom"}, {"status": "affected", "version": "1.3.0", "lessThan": "2.2.8.1", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-28T17:55:28.342Z"}}], "cna": {"title": "Possible DoS Vulnerability with Range Header in Rack", "source": {"advisory": "GHSA-xj5v-6v4g-jfw6", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "rack", "product": "rack", "versions": [{"status": "affected", "version": ">= 3.0.0, < 3.0.9.1"}, {"status": "affected", "version": ">= 1.3.0, < 2.2.8.1"}]}], "references": [{"url": "https://github.com/rack/rack/security/advisories/GHSA-xj5v-6v4g-jfw6", "name": "https://github.com/rack/rack/security/advisories/GHSA-xj5v-6v4g-jfw6", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/rack/rack/commit/4849132bef471adb21131980df745f4bb84de2d9", "name": "https://github.com/rack/rack/commit/4849132bef471adb21131980df745f4bb84de2d9", "tags": ["x_refsource_MISC"]}, {"url": "https://github.com/rack/rack/commit/62457686b26d33a15a254c7768c2076e8e02b48b", "name": "https://github.com/rack/rack/commit/62457686b26d33a15a254c7768c2076e8e02b48b", "tags": ["x_refsource_MISC"]}, {"url": "https://discuss.rubyonrails.org/t/possible-dos-vulnerability-with-range-header-in-rack/84944", "name": "https://discuss.rubyonrails.org/t/possible-dos-vulnerability-with-range-header-in-rack/84944", "tags": ["x_refsource_MISC"]}, {"url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack/CVE-2024-26141.yml", "name": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack/CVE-2024-26141.yml", "tags": ["x_refsource_MISC"]}, {"url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00022.html"}, {"url": "https://security.netapp.com/advisory/ntap-20240510-0007/"}], "descriptions": [{"lang": "en", "value": "Rack is a modular Ruby web server interface. Carefully crafted Range headers can cause a server to respond with an unexpectedly large response. Responding with such large responses could lead to a denial of service issue. Vulnerable applications will use the `Rack::File` middleware or the `Rack::Utils.byte_ranges` methods (this includes Rails applications). The vulnerability is fixed in 3.0.9.1 and 2.2.8.1."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-400", "description": "CWE-400: Uncontrolled Resource Consumption"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-02-28T23:28:10.503Z"}}}, "cveMetadata": {"cveId": "CVE-2024-26141", "state": "PUBLISHED", "dateUpdated": "2024-08-28T17:55:43.187Z", "dateReserved": "2024-02-14T17:40:03.688Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2024-02-28T23:28:10.503Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{"descriptions": [{"lang": "en", "value": "Rack is a modular Ruby web server interface. Carefully crafted Range headers can cause a server to respond with an unexpectedly large response. Responding with such large responses could lead to a denial of service issue. Vulnerable applications will use the `Rack::File` middleware or the `Rack::Utils.byte_ranges` methods (this includes Rails applications). The vulnerability is fixed in 3.0.9.1 and 2.2.8.1."}, {"lang": "es", "value": "Rack es una interfaz modular de servidor web Ruby. Los encabezados de rango cuidadosamente elaborados pueden hacer que un servidor responda con una respuesta inesperadamente grande. Responder con respuestas tan amplias podr\u00eda dar lugar a un problema de denegaci\u00f3n de servicio. Las aplicaciones vulnerables utilizar\u00e1n el middleware `Rack::File` o los m\u00e9todos `Rack::Utils.byte_ranges` (esto incluye aplicaciones Rails). La vulnerabilidad se solucion\u00f3 en 3.0.9.1 y 2.2.8.1."}], "id": "CVE-2024-26141", "lastModified": "2024-11-21T09:02:01.023", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.8, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2024-02-29T00:15:51.403", "references": [{"source": "security-advisories@github.com", "url": "https://discuss.rubyonrails.org/t/possible-dos-vulnerability-with-range-header-in-rack/84944"}, {"source": "security-advisories@github.com", "url": "https://github.com/rack/rack/commit/4849132bef471adb21131980df745f4bb84de2d9"}, {"source": "security-advisories@github.com", "url": "https://github.com/rack/rack/commit/62457686b26d33a15a254c7768c2076e8e02b48b"}, {"source": "security-advisories@github.com", "url": "https://github.com/rack/rack/security/advisories/GHSA-xj5v-6v4g-jfw6"}, {"source": "security-advisories@github.com", "url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack/CVE-2024-26141.yml"}, {"source": "security-advisories@github.com", "url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00022.html"}, {"source": "security-advisories@github.com", "url": "https://security.netapp.com/advisory/ntap-20240510-0007/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://discuss.rubyonrails.org/t/possible-dos-vulnerability-with-range-header-in-rack/84944"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/rack/rack/commit/4849132bef471adb21131980df745f4bb84de2d9"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/rack/rack/commit/62457686b26d33a15a254c7768c2076e8e02b48b"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/rack/rack/security/advisories/GHSA-xj5v-6v4g-jfw6"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/rack/CVE-2024-26141.yml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00022.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://security.netapp.com/advisory/ntap-20240510-0007/"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-400"}], "source": "security-advisories@github.com", "type": "Secondary"}]}

{"affected_release": [{"advisory": "RHSA-2024:2953", "cpe": "cpe:/a:redhat:enterprise_linux:8::highavailability", "package": "pcs-0:0.10.18-2.el8_10", "product_name": "Red Hat Enterprise Linux 8", "release_date": "2024-05-22T00:00:00Z"}, {"advisory": "RHSA-2024:2007", "cpe": "cpe:/a:redhat:rhel_tus:8.2::highavailability", "package": "pcs-0:0.10.4-6.el8_2.5", "product_name": "Red Hat Enterprise Linux 8.2 Telecommunications Update Service", "release_date": "2024-04-23T00:00:00Z"}, {"advisory": "RHSA-2024:2007", "cpe": "cpe:/a:redhat:rhel_e4s:8.2::highavailability", "package": "pcs-0:0.10.4-6.el8_2.5", "product_name": "Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions", "release_date": "2024-04-23T00:00:00Z"}, {"advisory": "RHSA-2024:2584", "cpe": "cpe:/a:redhat:rhel_tus:8.4::highavailability", "package": "pcs-0:0.10.8-1.el8_4.5", "product_name": "Red Hat Enterprise Linux 8.4 Telecommunications Update Service", "release_date": "2024-04-30T00:00:00Z"}, {"advisory": "RHSA-2024:2584", "cpe": "cpe:/a:redhat:rhel_e4s:8.4::highavailability", "package": "pcs-0:0.10.8-1.el8_4.5", "product_name": "Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions", "release_date": "2024-04-30T00:00:00Z"}, {"advisory": "RHSA-2024:3431", "cpe": "cpe:/a:redhat:rhel_eus:8.6::highavailability", "package": "pcs-0:0.10.12-6.el8_6.5", "product_name": "Red Hat Enterprise Linux 8.6 Extended Update Support", "release_date": "2024-05-28T00:00:00Z"}, {"advisory": "RHSA-2024:2581", "cpe": "cpe:/a:redhat:rhel_eus:8.8::highavailability", "package": "pcs-0:0.10.15-4.el8_8.2", "product_name": "Red Hat Enterprise Linux 8.8 Extended Update Support", "release_date": "2024-04-30T00:00:00Z"}, {"advisory": "RHSA-2024:2113", "cpe": "cpe:/a:redhat:enterprise_linux:9::highavailability", "package": "pcs-0:0.11.7-2.el9_4", "product_name": "Red Hat Enterprise Linux 9", "release_date": "2024-04-30T00:00:00Z"}, {"advisory": "RHSA-2024:1841", "cpe": "cpe:/a:redhat:rhel_eus:9.0::highavailability", "package": "pcs-0:0.11.1-10.el9_0.5", "product_name": "Red Hat Enterprise Linux 9.0 Extended Update Support", "release_date": "2024-04-16T00:00:00Z"}, {"advisory": "RHSA-2024:1846", "cpe": "cpe:/a:redhat:rhel_eus:9.2::highavailability", "package": "pcs-0:0.11.4-7.el9_2.1", "product_name": "Red Hat Enterprise Linux 9.2 Extended Update Support", "release_date": "2024-04-16T00:00:00Z"}], "bugzilla": {"description": "rubygem-rack: Possible DoS Vulnerability with Range Header in Rack", "id": "2265594", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265594"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.3", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "status": "verified"}, "cwe": "CWE-1333", "details": ["Rack is a modular Ruby web server interface. Carefully crafted Range headers can cause a server to respond with an unexpectedly large response. Responding with such large responses could lead to a denial of service issue. Vulnerable applications will use the `Rack::File` middleware or the `Rack::Utils.byte_ranges` methods (this includes Rails applications). The vulnerability is fixed in 3.0.9.1 and 2.2.8.1.", "A denial of service (DoS) vulnerability was found in rubygem-rack in how it parses Range Header. Carefully crafted range headers can cause a server to respond with an unexpectedly large response. Responding with large responses could lead to a denial of service issue."], "mitigation": {"lang": "en:us", "value": "No mitigation is currently available for this vulnerability. The recommendation is to perform updates as soon as they are available."}, "name": "CVE-2024-26141", "package_state": [{"cpe": "cpe:/a:redhat:logging:5", "fix_state": "Not affected", "package_name": "openshift-logging/fluentd-rhel8", "product_name": "Logging Subsystem for Red Hat OpenShift"}, {"cpe": "cpe:/a:redhat:red_hat_3scale_amp:2", "fix_state": "Affected", "package_name": "3scale-amp-backend-container", "product_name": "Red Hat 3scale API Management Platform 2"}, {"cpe": "cpe:/a:redhat:red_hat_3scale_amp:2", "fix_state": "Affected", "package_name": "3scale-amp-system-container", "product_name": "Red Hat 3scale API Management Platform 2"}, {"cpe": "cpe:/a:redhat:red_hat_3scale_amp:2", "fix_state": "Will not fix", "package_name": "3scale-amp-zync-container", "product_name": "Red Hat 3scale API Management Platform 2"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "pcs", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/a:redhat:satellite:6", "fix_state": "Affected", "package_name": "rubygem-rack", "product_name": "Red Hat Satellite 6"}], "public_date": "2024-02-22T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-26141\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-26141\nhttps://discuss.rubyonrails.org/t/possible-dos-vulnerability-with-range-header-in-rack/84944"], "statement": "Red Hat rates this vulnerability as a Moderate impact as this requires a specifically crafted response.", "threat_severity": "Moderate", "upstream_fix": "rubygem-rack 3.0.9.1, rubygem-rack 2.2.8.1"}