CVE-2023-27539

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2023-27539

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-27539.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-27539

Aliases

GHSA-c6qg-cjj8-47qp

Downstream

DEBIAN-CVE-2023-27539

DLA-3392-1

DSA-5530-1

MGASA-2024-0042

RHSA-2023:1961

RHSA-2023:1981

RHSA-2023:2652

RHSA-2023:3082

RHSA-2023:3403

RHSA-2023:6818

RLSA-2023:2652

RLSA-2023:3082

RLSA-2023:6818

SUSE-SU-2023:1685-1

SUSE-SU-2023:1869-1

UBUNTU-CVE-2023-27539

USN-6905-1

USN-7036-1

openSUSE-SU-2024:12789-1

openSUSE-SU-2024:12805-1

openSUSE-SU-2024:13726-1

openSUSE-SU-2024:13727-1

openSUSE-SU-2025:14811-1

openSUSE-SU-2025:14875-1

openSUSE-SU-2026:10286-1

openSUSE-SU-2026:10358-1

Related

Published

2025-01-09T00:33:47.737Z

Modified

2026-05-13T04:23:18.544146295Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVSS Calculator

Summary

[none]

Details

There is a denial of service vulnerability in the header parsing component of Rack.

Database specific

{
    "cna_assigner": "hackerone",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/27xxx/CVE-2023-27539.json"
}

References

Affected packages

Git / github.com/rack/rack

Affected ranges

Type: GIT
Repo: https://github.com/rack/rack
Events: Introduced

52901caf09ebcda879512a8605059963a49df55d

Fixed

ee7919ea04303717858be1c3f16b406adc6d8cff

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-27539.json"