XSS Vulnerability in Rack Affects Ruby Applications
CVE-2018-16471

6.1MEDIUM

Key Information:

Vendor

Rack

Status
Rack
Vendor
CVE Published:
13 November 2018

What is CVE-2018-16471?

A vulnerability exists in Rack that may allow for Cross-Site Scripting (XSS) attacks. Specifically, prior versions 2.0.6 and 1.6.11 are affected by crafted requests that misuse the scheme method in Rack::Request. Applications that assume the scheme will always return 'http' or 'https' and do not utilize proper escaping protocols may expose themselves to security risks. While Rails provides standard escaping mechanisms that mitigate this vulnerability, developers who bypass these measures or fail to incorporate them are at risk of exploitation.

Affected Version(s)

Rack 2.0.6, 1.6.11

References

https://groups.google.com/forum/#%21topic/rubyonrails-sec...
x_refsource_MISC
https://lists.debian.org/debian-lts-announce/2018/11/msg0...
mailing-listx_refsource_MLIST
http://lists.opensuse.org/opensuse-security-announce/2019...
vendor-advisoryx_refsource_SUSE

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2018-16471 : XSS Vulnerability in Rack Affects Ruby Applications