{"vulnerability": "CVE-2024-25126", "sightings": [{"uuid": "c97ac8ec-1fb8-4d99-8994-9dbb0c35d9d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-25126", "type": "seen", "source": "Telegram/TQaZlIxgOq1p-l9PGQ5jxdpTua38fSu9vStRpK9jZ-kHtFtb", "content": "", "creation_timestamp": "2025-02-14T21:08:31.000000Z"}, {"uuid": "7b3289d2-9f1b-457e-91eb-f78f1ae25c7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-25126", "type": "seen", "source": "https://t.me/MrVGunz/1140", "content": "(CVE-2024-25126) Rack \u06cc\u06a9 \u0631\u0627\u0628\u0637 \u0633\u0631\u0648\u0631 \u0648\u0628 \u0645\u062f\u0648\u0644\u0627\u0631 Ruby \u0627\u0633\u062a. \u0647\u062f\u0631\u0647\u0627\u06cc \u0646\u0648\u0639 \u0645\u062d\u062a\u0648\u0627 \u06a9\u0647 \u0628\u0627 \u062f\u0642\u062a \u0633\u0627\u062e\u062a\u0647 \u0634\u062f\u0647\u200c\u0627\u0646\u062f \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u0646\u062f \u0628\u0627\u0639\u062b \u0634\u0648\u0646\u062f \u06a9\u0647 \u067e\u0627\u0631\u0633\u0631 \u0646\u0648\u0639 \u0631\u0633\u0627\u0646\u0647 Rack \u0645\u062f\u062a \u0632\u0645\u0627\u0646 \u0628\u06cc\u0634\u062a\u0631\u06cc \u0627\u0632 \u062d\u062f \u0627\u0646\u062a\u0638\u0627\u0631 \u0631\u0627 \u0635\u0631\u0641 \u06a9\u0646\u062f \u0648 \u0645\u0646\u062c\u0631 \u0628\u0647 \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0627\u062d\u062a\u0645\u0627\u0644\u06cc \u0627\u0646\u06a9\u0627\u0631 \u0633\u0631\u0648\u06cc\u0633 (ReDos \u062f\u0631\u062c\u0647 \u062f\u0648\u0645 \u0686\u0646\u062f\u062c\u0645\u0644\u0647\u200c\u0627\u06cc) \u0634\u0648\u062f. \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062f\u0631 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc 3.0.9.1 \u0648 2.2.8.1 \u0627\u0635\u0644\u0627\u062d \u0634\u062f\u0647 \u0627\u0633\u062a.\n\u0644\u06cc\u0646\u06a9: https://nvd.nist.gov/vuln/detail/CVE-2024-25126\n\n(CVE-2024-25126) Rack is a modular Ruby web server interface. Carefully crafted content type headers can cause Rack\u2019s media type parser to take much longer than expected, leading to a possible denial of service vulnerability (ReDos 2nd degree polynomial). This vulnerability is patched in 3.0.9.1 and 2.2.8.1.\nLink: https://nvd.nist.gov/vuln/detail/CVE-2024-25126", "creation_timestamp": "2024-05-23T12:23:53.000000Z"}, {"uuid": "bd6e2f77-a804-4e2d-bbdb-d442dab7450d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-25126", "type": "seen", "source": "https://t.me/ctinow/196067", "content": "https://ift.tt/eoDtqEH\nCVE-2024-25126", "creation_timestamp": "2024-02-29T01:27:00.000000Z"}, {"uuid": "5162a6c5-387a-445d-aa3c-44e917bb1d18", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-25126", "type": "seen", "source": "https://t.me/ctinow/206954", "content": "https://ift.tt/bAr2W6j\nCVE-2024-25126 | rubygem-rack Header Content-Type denial of service", "creation_timestamp": "2024-03-13T17:42:01.000000Z"}, {"uuid": "bd146232-79f9-4bcb-b34f-f4bd8ba5c9f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-25126", "type": "seen", "source": "https://t.me/ctinow/196071", "content": "https://ift.tt/eoDtqEH\nCVE-2024-25126", "creation_timestamp": "2024-02-29T01:27:04.000000Z"}, {"uuid": "c6424303-707c-45cb-a65a-95d30abc66ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-25126", "type": "seen", "source": "https://t.me/ctinow/191428", "content": "https://ift.tt/8MtlW0s\nCVE-2024-25126", "creation_timestamp": "2024-02-23T04:11:29.000000Z"}]}