CVE-2022-30122

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2022-30122

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-30122.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2022-30122

Aliases

GHSA-hxqx-xwvh-44m2

Downstream

DEBIAN-CVE-2022-30122

DLA-3095-1

DSA-5530-1

MGASA-2022-0252

OESA-2022-1729

RHSA-2022:7242

RHSA-2023:1486

SUSE-SU-2022:2192-1

SUSE-SU-2022:2526-1

UBUNTU-CVE-2022-30122

USN-5253-1

USN-5896-1

USN-7036-1

openSUSE-SU-2024:12119-1

openSUSE-SU-2024:12397-1

openSUSE-SU-2024:12974-1

openSUSE-SU-2024:13167-1

openSUSE-SU-2024:13726-1

openSUSE-SU-2024:13727-1

openSUSE-SU-2025:14811-1

openSUSE-SU-2025:14875-1

openSUSE-SU-2026:10286-1

openSUSE-SU-2026:10358-1

Related

Published

2022-12-05T00:00:00Z

Modified

2026-05-15T11:53:26.392296342Z

Summary

[none]

Details

A possible denial of service vulnerability exists in Rack <2.0.9.1, <2.1.4.1 and <2.2.3.1 in the multipart parsing component of Rack.

Database specific

{
    "unresolved_ranges": [
        {
            "source": "AFFECTED_FIELD",
            "extracted_events": [
                {
                    "last_affected": "2.0.9.1, 2.1.4.1, 2.2.3.1"
                }
            ]
        }
    ],
    "cwe_ids": [
        "CWE-400"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/30xxx/CVE-2022-30122.json",
    "cna_assigner": "hackerone"
}

References

Affected packages