CVE-2025-6442
published 2025-06-25CVE-2025-6442: Ruby WEBrick read_header HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected…
PriorityP335medium5.9CVSS 3.1
AVNACHPRNUINSUCNIHAN
EPSS
0.42%
33.8th percentile
Ruby WEBrick read_header HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions.
The specific flaw exists within the read_headers method. The issue results from the inconsistent parsing of terminators of HTTP headers. An attacker can leverage this vulnerability to smuggle arbitrary HTTP requests. Was ZDI-CAN-21876.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | macos_sequoia | — | — |
| apple | macos_sonoma | — | — |
| apple | macos_tahoe | — | — |
| debian | ruby-webrick | < ruby-webrick 1.9.1-1 (forky) | ruby-webrick 1.9.1-1 (forky) |
| ruby-lang | webrick | < 1.8.2 | 1.8.2 |
| ruby-lang | webrick | >= 0 < 1.8.2 | 1.8.2 |
| ruby | webrick | — | — |
CVSS provenance
nvdv3.15.9MEDIUMCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
nvdv3.06.5MEDIUMCVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:N
osv5.9MEDIUM
vendor_debian5.9MEDIUM
vendor_redhat5.9MEDIUM
vendor_ubuntu5.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Apple
CVE-2025-6442: macOS Tahoe 26.1
vendor_apple·2025-11-03·CVSS 5.9
CVE-2025-6442 [MEDIUM] CVE-2025-6442: macOS Tahoe 26.1
Apple Security Update: About the security content of macOS Tahoe 26.1
Product: macOS Tahoe
Version: 26.1
CVE: CVE-2025-6442
Component: CVE-2025-6442
Apple
CVE-2025-6442: macOS Sequoia 15.7.2
vendor_apple·2025-11-03·CVSS 5.9
CVE-2025-6442 [MEDIUM] CVE-2025-6442: macOS Sequoia 15.7.2
Apple Security Update: About the security content of macOS Sequoia 15.7.2
Product: macOS Sequoia
Version: 15.7.2
CVE: CVE-2025-6442
Component: CVE-2025-6442
Apple
CVE-2025-6442: macOS Sonoma 14.8.2
vendor_apple·2025-11-03·CVSS 5.9
CVE-2025-6442 [MEDIUM] CVE-2025-6442: macOS Sonoma 14.8.2
Apple Security Update: About the security content of macOS Sonoma 14.8.2
Product: macOS Sonoma
Version: 14.8.2
CVE: CVE-2025-6442
Component: CVE-2025-6442
Ubuntu
Ruby vulnerabilities
vendor_ubuntu·2025-10-27·CVSS 5.3
CVE-2024-47220 [MEDIUM] Ruby vulnerabilities
Title: Ruby vulnerabilities
Summary: Several security issues were fixed in Ruby.
It was discovered that the REXML module bunded into Ruby incorrectly
handled parsing XML documents with repeated instances of certain
characters. An attacker could possibly use this issue to cause REXML to
consume excessive resources, leading to a denial of service. Ubuntu 18.04
LTS and Ubuntu 20.04 LTS were previously addressed in USN-7256-1 and
USN-7734-1. This update addresses the issue in Ubuntu 16.04 LTS.
(CVE-2024-35176)
It was discovered that the REXML module bunded into Ruby incorrectly
handled parsing XML documents with repeated instances of certain
characters. An attacker could possibly use this issue to cause REXML to
consume excessive resources, leading to a denial of service. Ubuntu 20.04
LTS w
Ubuntu
WEBrick vulnerability
vendor_ubuntu·2025-08-21
CVE-2025-6442 WEBrick vulnerability
Title: WEBrick vulnerability
Summary: WEBrick could allow an HTTP request smuggling attack.
It was discovered that WEBrick incorrectly parsed HTTP headers. In
configurations where WEBrick is placed behind an HTTP proxy, a remote
attacker could possibly use this issue to perform an HTTP Request Smuggling
attack.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
webrick: Ruby WEBrick Request Smuggling Vulnerability
vendor_redhat·2025-06-25·CVSS 5.9
CVE-2025-6442 [MEDIUM] CWE-444 webrick: Ruby WEBrick Request Smuggling Vulnerability
webrick: Ruby WEBrick Request Smuggling Vulnerability
Ruby WEBrick read_header HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions.
The specific flaw exists within the read_headers method. The issue results from the inconsistent parsing of terminators of HTTP headers. An attacker can leverage this vulnerability to smuggle arbitrary HTTP requests. Was ZDI-CAN-21876.
A request smuggling vulnerability has been discovered in the Ruby WEBrick gem. This vulnerability is exploitable when the product is deployed behind a HTTP proxy that fulfills specific conditions.
Mitigation: Mit
Debian
CVE-2025-6442: ruby-webrick - Ruby WEBrick read_header HTTP Request Smuggling Vulnerability. This vulnerabilit...
vendor_debian·2025·CVSS 5.9
CVE-2025-6442 [MEDIUM] CVE-2025-6442: ruby-webrick - Ruby WEBrick read_header HTTP Request Smuggling Vulnerability. This vulnerabilit...
Ruby WEBrick read_header HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions. The specific flaw exists within the read_headers method. The issue results from the inconsistent parsing of terminators of HTTP headers. An attacker can leverage this vulnerability to smuggle arbitrary HTTP requests. Was ZDI-CAN-21876.
Scope: local
bookworm: open
forky: resolved (fixed in 1.9.1-1)
sid: resolved (fixed in 1.9.1-1)
trixie: resolved (fixed in 1.9.1-1)
OSV
ruby2.3, ruby2.5, ruby2.7 vulnerabilities
osv·2025-10-27·CVSS 5.3
CVE-2024-35176 [MEDIUM] ruby2.3, ruby2.5, ruby2.7 vulnerabilities
ruby2.3, ruby2.5, ruby2.7 vulnerabilities
It was discovered that the REXML module bunded into Ruby incorrectly
handled parsing XML documents with repeated instances of certain
characters. An attacker could possibly use this issue to cause REXML to
consume excessive resources, leading to a denial of service. Ubuntu 18.04
LTS and Ubuntu 20.04 LTS were previously addressed in USN-7256-1 and
USN-7734-1. This update addresses the issue in Ubuntu 16.04 LTS.
(CVE-2024-35176)
It was discovered that the REXML module bunded into Ruby incorrectly
handled parsing XML documents with repeated instances of certain
characters. An attacker could possibly use this issue to cause REXML to
consume excessive resources, leading to a denial of service. Ubuntu 20.04
LTS was previously addressed in USN-7256-1. T
OSV
Ruby WEBrick read_headers method can lead to HTTP Request/Response Smuggling
osv·2025-06-26
CVE-2025-6442 [MEDIUM] Ruby WEBrick read_headers method can lead to HTTP Request/Response Smuggling
Ruby WEBrick read_headers method can lead to HTTP Request/Response Smuggling
Ruby WEBrick read_header HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions.
The specific flaw exists within the read_headers method. The issue results from the inconsistent parsing of terminators of HTTP headers. An attacker can leverage this vulnerability to smuggle arbitrary HTTP requests. Was ZDI-CAN-21876.
GHSA
Ruby WEBrick read_headers method can lead to HTTP Request/Response Smuggling
ghsa·2025-06-26
CVE-2025-6442 [MEDIUM] CWE-444 Ruby WEBrick read_headers method can lead to HTTP Request/Response Smuggling
Ruby WEBrick read_headers method can lead to HTTP Request/Response Smuggling
Ruby WEBrick read_header HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions.
The specific flaw exists within the read_headers method. The issue results from the inconsistent parsing of terminators of HTTP headers. An attacker can leverage this vulnerability to smuggle arbitrary HTTP requests. Was ZDI-CAN-21876.
OSV
CVE-2025-6442: Ruby WEBrick read_header HTTP Request Smuggling Vulnerability
osv·2025-06-25·CVSS 5.9
CVE-2025-6442 [MEDIUM] CVE-2025-6442: Ruby WEBrick read_header HTTP Request Smuggling Vulnerability
Ruby WEBrick read_header HTTP Request Smuggling Vulnerability. This vulnerability allows remote attackers to smuggle arbitrary HTTP requests on affected installations of Ruby WEBrick. This issue is exploitable when the product is deployed behind an HTTP proxy that fulfills specific conditions. The specific flaw exists within the read_headers method. The issue results from the inconsistent parsing of terminators of HTTP headers. An attacker can leverage this vulnerability to smuggle arbitrary HTTP requests. Was ZDI-CAN-21876.
No detection rules found.
No public exploits indexed.
2025-06-25
Published