Side-channel attack Affecting rack-protection package, versions <2.0.0.beta1
Snyk CVSS
Attack Complexity
High
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-RUBY-RACKPROTECTION-20394
- published 2 Aug 2017
- disclosed 3 Aug 2013
- credit Louis Mullie
How to fix?
Upgrade rack-protection
to version 2.0.0.beta1 or higher.
Overview
rack-protection
protects against typical web attacks.
Affected versions of the package are vulnerable to Side-channel attacks.