Rack Multipart MIME Parsing DoS Vulnerability

Rack Multipart MIME Parsing DoS Vulnerability

CVE-2023-27530 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

A DoS vulnerability exists in Rack <v3.0.4.2, <v2.2.6.3, <v2.1.4.3 and <v2.0.9.3 within in the Multipart MIME parsing code in which could allow an attacker to craft requests that can be abuse to cause multipart parsing to take longer than expected.

Learn more about our Web Application Penetration Testing UK.