CVE-2024-47220
published 2024-09-22CVE-2024-47220: An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows HTTP request smuggling by providing both a Content-Length header and a…
PriorityP427medium7.5
EPSS
0.39%
31.1th percentile
An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows HTTP request smuggling by providing both a Content-Length header and a Transfer-Encoding header, e.g., "GET /admin HTTP/1.1\r\n" inside of a "POST /user HTTP/1.1\r\n" request. NOTE: the supplier's position is "Webrick should not be used in production."
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | ruby-webrick | < ruby-webrick 1.9.1-1 (forky) | ruby-webrick 1.9.1-1 (forky) |
| ruby-lang | webrick | >= 0 < 1.8.2 | 1.8.2 |
CVSS provenance
vendor_redhat7.5MEDIUM
osv5.3MEDIUM
vendor_ubuntu5.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Ruby vulnerabilities
vendor_ubuntu·2025-10-27·CVSS 5.3
CVE-2024-47220 [MEDIUM] Ruby vulnerabilities
Title: Ruby vulnerabilities
Summary: Several security issues were fixed in Ruby.
It was discovered that the REXML module bunded into Ruby incorrectly
handled parsing XML documents with repeated instances of certain
characters. An attacker could possibly use this issue to cause REXML to
consume excessive resources, leading to a denial of service. Ubuntu 18.04
LTS and Ubuntu 20.04 LTS were previously addressed in USN-7256-1 and
USN-7734-1. This update addresses the issue in Ubuntu 16.04 LTS.
(CVE-2024-35176)
It was discovered that the REXML module bunded into Ruby incorrectly
handled parsing XML documents with repeated instances of certain
characters. An attacker could possibly use this issue to cause REXML to
consume excessive resources, leading to a denial of service. Ubuntu 20.04
LTS w
Ubuntu
WEBrick vulnerability
vendor_ubuntu·2024-10-08
CVE-2024-47220 WEBrick vulnerability
Title: WEBrick vulnerability
Summary: WEBrick could allow a HTTP request smuggling attack.
USN-7057-1 fixed a vulnerability in WEBrick. This update provides the
corresponding updates for Ubuntu 22.04 LTS.
Original advisory details:
It was discovered that WEBrick incorrectly handled having both a Content-
Length header and a Transfer-Encoding header. A remote attacker could
possibly use this issue to perform a HTTP request smuggling attack.
Instructions: In general, a standard system update will make all the necessary changes.
Ubuntu
WEBrick vulnerability
vendor_ubuntu·2024-10-07
CVE-2024-47220 WEBrick vulnerability
Title: WEBrick vulnerability
Summary: WEBrick could allow a HTTP request smuggling attack.
It was discovered that WEBrick incorrectly handled having both a Content-
Length header and a Transfer-Encoding header. A remote attacker could
possibly use this issue to perform a HTTP request smuggling attack.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
WEBrick: HTTP request smuggling
vendor_redhat·2024-09-22·CVSS 7.5
CVE-2024-47220 [MEDIUM] CWE-444 WEBrick: HTTP request smuggling
WEBrick: HTTP request smuggling
An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows HTTP request smuggling by providing both a Content-Length header and a Transfer-Encoding header, e.g., "GET /admin HTTP/1.1\r\n" inside of a "POST /user HTTP/1.1\r\n" request. NOTE: the supplier's position is "Webrick should not be used in production."
A flaw was found in the webrick toolkit. This issue occurs because the server incorrectly handles requests with both Content-Length and Transfer-Encoding headers. This can allow an attacker to sneak in an extra request such as GET /admin after the normal request POST /user. As a result, unauthorized users can access restricted areas like /admin by POST /user.
Statement: This CVE is rated as having Moderate impact because Webric
Debian
CVE-2024-47220: ruby-webrick - An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows...
vendor_debian·2024
CVE-2024-47220 CVE-2024-47220: ruby-webrick - An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows...
An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows HTTP request smuggling by providing both a Content-Length header and a Transfer-Encoding header, e.g., "GET /admin HTTP/1.1\r\n" inside of a "POST /user HTTP/1.1\r\n" request. NOTE: the supplier's position is "Webrick should not be used in production."
Scope: local
bookworm: open
forky: resolved (fixed in 1.9.1-1)
sid: resolved (fixed in 1.9.1-1)
trixie: resolved (fixed in 1.9.1-1)
OSV
ruby2.3, ruby2.5, ruby2.7 vulnerabilities
osv·2025-10-27·CVSS 5.3
CVE-2024-35176 [MEDIUM] ruby2.3, ruby2.5, ruby2.7 vulnerabilities
ruby2.3, ruby2.5, ruby2.7 vulnerabilities
It was discovered that the REXML module bunded into Ruby incorrectly
handled parsing XML documents with repeated instances of certain
characters. An attacker could possibly use this issue to cause REXML to
consume excessive resources, leading to a denial of service. Ubuntu 18.04
LTS and Ubuntu 20.04 LTS were previously addressed in USN-7256-1 and
USN-7734-1. This update addresses the issue in Ubuntu 16.04 LTS.
(CVE-2024-35176)
It was discovered that the REXML module bunded into Ruby incorrectly
handled parsing XML documents with repeated instances of certain
characters. An attacker could possibly use this issue to cause REXML to
consume excessive resources, leading to a denial of service. Ubuntu 20.04
LTS was previously addressed in USN-7256-1. T
OSV
CVE-2024-47220: An issue was discovered in the WEBrick toolkit through 1
osv·2024-09-22
CVE-2024-47220 CVE-2024-47220: An issue was discovered in the WEBrick toolkit through 1
An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows HTTP request smuggling by providing both a Content-Length header and a Transfer-Encoding header, e.g., "GET /admin HTTP/1.1\r\n" inside of a "POST /user HTTP/1.1\r\n" request. NOTE: the supplier's position is "Webrick should not be used in production."
GHSA
HTTP Request Smuggling in ruby webrick
ghsa·2024-09-22
CVE-2024-47220 [HIGH] CWE-444 HTTP Request Smuggling in ruby webrick
HTTP Request Smuggling in ruby webrick
An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows HTTP request smuggling by providing both a Content-Length header and a Transfer-Encoding header, e.g., "GET /admin HTTP/1.1\r\n" inside of a "POST /user HTTP/1.1\r\n" request. NOTE: the supplier's position is "Webrick should not be used in production."
OSV
HTTP Request Smuggling in ruby webrick
osv·2024-09-22
CVE-2024-47220 [HIGH] HTTP Request Smuggling in ruby webrick
HTTP Request Smuggling in ruby webrick
An issue was discovered in the WEBrick toolkit through 1.8.1 for Ruby. It allows HTTP request smuggling by providing both a Content-Length header and a Transfer-Encoding header, e.g., "GET /admin HTTP/1.1\r\n" inside of a "POST /user HTTP/1.1\r\n" request. NOTE: the supplier's position is "Webrick should not be used in production."
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-09-22
Published