Contents

--- 
gem: rack-cache
cve: 2012-2671
osvdb: 83077
url: https://nvd.nist.gov/vuln/detail/CVE-2012-2671
title: rack-cache Rubygem Sensitive HTTP Header Caching Weakness
date: 2012-06-06

description: |
  Rack::Cache (rack-cache) contains a flaw related to the rubygem caching
  sensitive HTTP headers. This will result in a weakness that may make it
  easier for an attacker to gain access to a user's session via a specially
  crafted header.

cvss_v2: 7.5

patched_versions: 
  - ">= 1.2"

Version data entries

1 entries across 1 versions & 1 rubygems

Version	Path
bundler-audit-0.7.0.1	data/ruby-advisory-db/gems/rack-cache/CVE-2012-2671.yml