VDB

GCVE-110-MAGEIA-2023-29

GCVE-110-MAGEIA-2023-29
Advisory Published
Vulnetix · Advisory published February 7, 2023
Potential reflected file download (RFD) vulnerability in ruby-sinatra, a Ruby library for writing HTTP applications. A Content-Disposition HTTP header was being incorrectly derived from a potentially user-supplied filename. (CVE-2022-45442)

Affected Products

VendorProductVersionsPlatforms
Mageiafreerdp0 (affected), 2.9.0-1.mga8 (unaffected)
Mageiaremmina0 (affected), 1.4.19-1.mga8 (unaffected)
Mageiaruby-sinatra0 (affected), 0 (affected), 2.0.8.1-1.2.mga8 (unaffected), 2.0.8.1-1.2.mga8 (unaffected)

Browse GCVE Records

73,738 records in the GCVE database · Updated July 19, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›