CVE-2019-16201 in Ruby Programming Language and Debian Products
Published on November 26, 2019

WEBrick::HTTPAuth::DigestAuth in Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 has a regular expression Denial of Service cause by looping/backtracking. A victim must expose a WEBrick server that uses DigestAuth to the Internet or a untrusted network.

Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2019-16201

stack.watch emails you whenever new vulnerabilities are published in Ruby Programming Language Ruby Language or Debian Linux. Just hit a watch button to start following.

Ruby Programming Language Ruby Language

Debian Linux

Exploit Probability

EPSS

0.61%

Percentile

69.25%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2019-16201 in Ruby Programming Language and Debian ProductsPublished on November 26, 2019

Products Associated with CVE-2019-16201

Exploit Probability

CVE-2019-16201 in Ruby Programming Language and Debian Products
Published on November 26, 2019