CVE-2024-27456

EPSS 0.15%

Rack CORS Middleware has Insecure File Permissions

Published: 2/26/2024Modified: 3/4/2024

Also known as:GHSA-785g-282q-pwvx

Description

rack-cors (aka Rack CORS Middleware) 2.0.1 has 0666 permissions for the .rb files.

Affected packages (1)

RubyGems/rack-cors>= 2.0.1, < 2.0.2

References (6)