GHSA-q2ww-5357-x388 — Vulnetix

GHSA-q2ww-5357-x388 PUBLISHED CVSS 4.800000190734863 MEDIUM

Rack has Content-Length mismatch in Rack::Files error responses

Risk Scores

CVSS v3.1

4.800000190734863

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Affected Products

Vendor	Product	Versions

RubyGems	rack	0, 3.0.0, 3.2.0
RubyGems	rack

Timeline

Apr 2, 2026 CVE Published
Apr 9, 2026 Security Advisory
May 13, 2026 CVE Updated

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›