A sequence injection vulnerability exists in Rack <2.0.9.1, <2.1.4.1 and <2.2.3.1 which could allow is a possible shell escape in the Lint and CommonLogger components of Rack.
References
Link | Resource |
---|---|
https://discuss.rubyonrails.org/t/cve-2022-30123-possible-shell-escape-sequence-injection-vulnerability-in-rack/80728 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2022-12-05 14:15
Updated : 2022-12-06 20:38
NVD link : CVE-2022-30123
Mitre link : CVE-2022-30123
JSON object : View
CWE
Products Affected
rack_project
- rack