VYPR
High severityNVD Advisory· Published Mar 27, 2019· Updated Aug 4, 2024

CVE-2019-5419

CVE-2019-5419

Description

There is a possible denial of service vulnerability in Action View (Rails) <5.2.2.1, <5.1.6.2, <5.0.7.2, <4.2.11.1 where specially crafted accept headers can cause action view to consume 100% cpu and make the server unresponsive.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
actionviewRubyGems
>= 4.0.0, < 4.2.11.14.2.11.1
actionviewRubyGems
>= 5.2.0, < 5.2.2.15.2.2.1
actionviewRubyGems
>= 5.1.0, < 5.1.6.25.1.6.2
actionviewRubyGems
>= 5.0.0, < 5.0.7.25.0.7.2
actionviewRubyGems
>= 6.0.0.beta1, < 6.0.0.beta36.0.0.beta3

Affected products

19

Patches

Vulnerability mechanics

References

20

News mentions

0

No linked articles in our index yet.