CVE-2021-22902

The actionpack ruby gem (a framework for handling and responding to web requests in Rails) before 6.0.3.7, 6.1.3.2 suffers from a possible denial of service vulnerability in the Mime type parser of Action Dispatch. Carefully crafted Accept headers can cause the mime type parser in Action Dispatch to do catastrophic backtracking in the regular expression engine.

Published: Jun 11, 2021
Updated: May 9, 2024
CVE: CVE-2021-22902
GHSA: GHSA-g8ww-46x2-2p65
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

CWEs:

CWE-400

Affected Software
References

Software	From	Fixed in
rubyonrails / rails	6.0.0	6.0.3.7
rubyonrails / rails	6.1.0	6.1.0.2
actionpack	6.0.0	6.0.3.7
actionpack	6.1.0	6.1.3.2

https://discuss.rubyonrails.org/t/cve-2021-22902-possible-denial-of-service-vulnerability-in-action-dispatch/77866
https://github.com/rails/rails/releases/tag/v6.0.3.7
https://github.com/rails/rails/releases/tag/v6.1.3.2
https://groups.google.com/g/rubyonrails-security/c/_5ID_ld9u1c
https://hackerone.com/reports/1138654

Vulnerability Database

289,697

CVE-2021-22902