Moderate severity vulnerability that affects actionpack

GHSA-544j-77x9-h938

Published Sep 17, 2018 · Modified Dec 2, 2024

Description

Withdrawn, accidental duplicate publish.

actionpack/lib/action_dispatch/routing/route_set.rb in Action Pack in Ruby on Rails 4.x before 4.2.5.1 and 5.x before 5.0.0.beta1.1 allows remote attackers to cause a denial of service (superfluous caching and memory consumption) by leveraging an application's use of a wildcard controller route.

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2015-7581
ADVISORY https://github.com/advisories/GHSA-544j-77x9-h938

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes