cbcvebase.
CVE-2018-16471
published 2018-11-13

CVE-2018-16471: There is a possible XSS vulnerability in Rack before 2.0.6 and 1.6.11. Carefully crafted requests can impact the data returned by the `scheme` method on…

PriorityP428medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
EPSS
1.82%
76.0th percentile
There is a possible XSS vulnerability in Rack before 2.0.6 and 1.6.11. Carefully crafted requests can impact the data returned by the `scheme` method on `Rack::Request`. Applications that expect the scheme to be limited to 'http' or 'https' and do not escape the return value could be vulnerable to an XSS attack. Note that applications using the normal escaping mechanisms provided by Rails may not impacted, but applications that bypass the escaping mechanisms, or do not use them may be vulnerable.

Affected

7 ranges
VendorProductVersion rangeFixed in
debiandebian_linux
debianruby-rack< ruby-rack 1.6.4-6 (bookworm)ruby-rack 1.6.4-6 (bookworm)
rackrack
rackrack>= 0 < 1.6.111.6.11
rackrack>= 2.0.0 < 2.0.62.0.6
rack_projectrack>= 1.6.0 < 1.6.111.6.11
rack_projectrack>= 2.0.0 < 2.0.62.0.6

CVSS provenance

nvdv3.06.1MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
osv6.1MEDIUM
vendor_debian6.1MEDIUM
vendor_redhat6.1MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.