CVE-2022-44571 - OpenCVE

There is a denial of service vulnerability in the Content-Disposition parsingcomponent of Rack fixed in 2.0.9.2, 2.1.4.2, 2.2.4.1, 3.0.0.1. This could allow an attacker to craft an input that can cause Content-Disposition header parsing in Rackto take an unexpected amount of time, possibly resulting in a denial ofservice attack vector. This header is used typically used in multipartparsing. Any applications that parse multipart posts using Rack (virtuallyall Rails applications) are impacted.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors & Products
CPE Configurations

Vendors	Products
Rack Project	Rack

Configuration 1 [-]

OR	cpe:2.3:a:rack_project:rack::::::ruby::*
	cpe:2.3:a:rack_project:rack::::::ruby::*
	cpe:2.3:a:rack_project:rack::::::ruby::*
	cpe:2.3:a:rack_project:rack::::::ruby::*

References

Link	Resource
https://discuss.rubyonrails.org/t/cve-2022-44571-possible-denial-of-service-vulnerability-in-rack-content-disposition-parsing/82126	Patch Vendor Advisory
https://security.netapp.com/advisory/ntap-20231208-0013/
https://www.debian.org/security/2023/dsa-5530

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: hackerone

Published: 2023-02-09T00:00:00

Updated: 2023-12-08T22:06:18.809359

Reserved: 2022-11-01T00:00:00

Link: CVE-2022-44571

JSON object: View

NVD Information

Status : Modified

Published: 2023-02-09T20:15:11.153

Modified: 2023-12-08T22:15:07.447

Link: CVE-2022-44571

JSON object: View

Redhat Information

No data.

CWE

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:rack_project:rack:*:*:*:*:*:ruby:*:*", "matchCriteriaId": "1DF1BBB2-39B9-442F-86BC-243A2A951A24", "versionEndExcluding": "2.0.9.2", "versionStartIncluding": "2.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:rack_project:rack:*:*:*:*:*:ruby:*:*", "matchCriteriaId": "C1B66022-6E77-4CFA-B55F-5BC1182A23E2", "versionEndExcluding": "2.1.4.2", "versionStartIncluding": "2.1.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:rack_project:rack:*:*:*:*:*:ruby:*:*", "matchCriteriaId": "49B7FE1A-545A-451A-ACEE-075BD917FA1D", "versionEndExcluding": "2.2.6.1", "versionStartIncluding": "2.2.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:rack_project:rack:*:*:*:*:*:ruby:*:*", "matchCriteriaId": "3C1AC2F2-87C8-4BAD-A1BD-FEA1041998D1", "versionEndExcluding": "3.0.4.1", "versionStartIncluding": "3.0.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "There is a denial of service vulnerability in the Content-Disposition parsingcomponent of Rack fixed in 2.0.9.2, 2.1.4.2, 2.2.4.1, 3.0.0.1. This could allow an attacker to craft an input that can cause Content-Disposition header parsing in Rackto take an unexpected amount of time, possibly resulting in a denial ofservice attack vector. This header is used typically used in multipartparsing. Any applications that parse multipart posts using Rack (virtuallyall Rails applications) are impacted."}], "id": "CVE-2022-44571", "lastModified": "2023-12-08T22:15:07.447", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-02-09T20:15:11.153", "references": [{"source": "support@hackerone.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://discuss.rubyonrails.org/t/cve-2022-44571-possible-denial-of-service-vulnerability-in-rack-content-disposition-parsing/82126"}, {"source": "support@hackerone.com", "url": "https://security.netapp.com/advisory/ntap-20231208-0013/"}, {"source": "support@hackerone.com", "url": "https://www.debian.org/security/2023/dsa-5530"}], "sourceIdentifier": "support@hackerone.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-1333"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-400"}], "source": "support@hackerone.com", "type": "Secondary"}]}