CVE-2025-27111

EPSS 0.84%
Veröffentlicht 04.03.2025 16:15:40
Zuletzt bearbeitet 03.11.2025 22:18:43
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

Escape Sequence Injection vulnerability in Rack lead to Possible Log Injection

Rack is a modular Ruby web server interface. The Rack::Sendfile middleware logs unsanitised header values from the X-Sendfile-Type header. An attacker can exploit this by injecting escape sequences (such as newline characters) into the header, resulting in log injection. This vulnerability is fixed in 2.2.12, 3.0.13, and 3.1.11.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 8

NVD 3 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Rack ≫ Rack SwPlatformruby Version < 2.2.12

Rack ≫ Rack SwPlatformruby Version >= 3.0.0 < 3.0.13

Rack ≫ Rack SwPlatformruby Version >= 3.1.0 < 3.1.11

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.84%	0.748

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
security-advisories@github.com	6.9	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-117 Improper Output Neutralization for Logs

The product does not neutralize or incorrectly neutralizes output that is written to logs.

CWE-93 Improper Neutralization of CRLF Sequences ('CRLF Injection')

The product uses CRLF (carriage return line feeds) as a special element, e.g. to separate lines or records, but it does not neutralize or incorrectly neutralizes CRLF sequences from inputs.

https://github.com/rack/rack/security/advisories/GHSA-8cgq-6mh2-7j6v

Vendor Advisory

Mitigation

https://github.com/rack/rack/commit/803aa221e8302719715e224f4476e438f2531a53

Patch

https://github.com/rack/rack/commit/aeac570bb8080ca7b53b7f2e2f67498be7ebd30b

Patch

https://github.com/rack/rack/commit/b13bc6bfc7506aca3478dc5ac1c2ec6fc53f82a3

Patch

https://lists.debian.org/debian-lts-announce/2025/03/msg00016.html

https://nvd.nist.gov/vuln/detail/CVE-2025-27111

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-27111

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-27111

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-27111