Unspecified vulnerability in Rack::Auth::AbstractRequest in Rack 1.1.x before 1.1.5, 1.2.x before 1.2.7, 1.3.x before 1.3.9, and 1.4.x before 1.4.4 allows remote attackers to cause a denial of service via unknown vectors related to "symbolized arbitrary strings."
| Package (Ecosystem) | Introduced | Fixed | Limit |
|---|---|---|---|
| rack(RubyGems) | 1.1.0 | 1.1.5 | N/A |
| rack(RubyGems) | 1.2.0 | 1.2.7 | N/A |
| rack(RubyGems) | 1.3.0 | 1.3.9 | N/A |
| rack(RubyGems) | 1.4.0 | 1.4.4 | N/A |
CVSS Metrics
