CVE-2012-2671 in Rack-cachinformazioni

Riassunto

di MITRE

The Rack::Cache rubygem 0.3.0 through 1.1 caches Set-Cookie and other sensitive headers, which allows attackers to obtain sensitive cookie information, hijack web sessions, or have other unspecified impact by accessing the cache.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

14/05/2012

Divulgazione

16/06/2012

Moderazione

accettato

Voce

VDB-61011

CPE

pronto

CWE

CWE-200 (non confermato)

CVSS

7.5 (NVD)

EPSS

0.02359

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-2671
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-2671
CVE Details	https://www.cvedetails.com/cve/CVE-2012-2671/

◂ Precedente Visione D'ensemble Il prossimo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!