Description
Sinatra rack-protection versions 1.5.4 and 2.0.0.rc3 and earlier contains a timing attack vulnerability in the CSRF token checking that can result in signatures can be exposed. This attack appear to be exploitable via network connectivity to the ruby application. This vulnerability appears to have been fixed in 1.5.5 and 2.0.0.
References (4)
Core 4
Core References
Issue Tracking, Third Party Advisory x_refsource_confirm
https://github.com/sinatra/rack-protection/pull/98
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2018:1060
Third Party Advisory vendor-advisory
x_refsource_debian
https://www.debian.org/security/2018/dsa-4247
Issue Tracking, Patch, Third Party Advisory x_refsource_confirm
https://github.com/sinatra/sinatra/commit/8aa6c42ef724f93ae309fb7c5668e19ad547eceb#commitcomment-27964109
Scores
CVSS v3
5.9
EPSS
0.0040
EPSS Percentile
61.0%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-203
Status
published
Products (3)
rubygems/rack-protection
0 - 1.5.5RubyGems
sinatrarb/rack-protection
2.0.0 rc1 (3 CPE variants)
sinatrarb/rack-protection
< 1.5.5
Published
Mar 07, 2018
Tracked Since
Feb 18, 2026