actionpack/lib/action_dispatch/routing/route_set.rb in Action Pack in Ruby on Rails 4.x before 4.2.5.1 and 5.x before 5.0.0.beta1.1 allows remote attackers to cause a denial of service (superfluous caching and memory consumption) by leveraging an application's use of a wildcard controller route.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2016-02-16 02:59
Updated : 2025-04-12 10:46
NVD link : CVE-2015-7581
Mitre link : CVE-2015-7581
CVE.ORG link : CVE-2015-7581
JSON object : View
Products Affected
rubyonrails
- rails
CWE
CWE-399
Resource Management Errors