CVE-2022-45442

Sinatra is a domain-specific language for creating web applications in Ruby. An issue was discovered in Sinatra 2.0 before 2.2.3 and 3.0 before 3.0.4. An application is vulnerable to a reflected file download (RFD) attack that sets the Content-Disposition header of a response when the filename is derived from user-supplied input. Version 2.2.3 and 3.0.4 contain patches for this issue.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 58%
Affected Products (NVD)
VendorProductVersion
sinatrarbsinatra
2.0.0 ≤
𝑥
< 2.2.3
sinatrarbsinatra
3.0.0 ≤
𝑥
< 3.0.4
debiandebian_linux
10.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
ruby-sinatra
bookworm
3.0.5-3
fixed
bullseye
vulnerable
bullseye (security)
2.0.8.1-2+deb11u1
fixed
sid
3.2.0-1
fixed
trixie
3.2.0-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
ruby-sinatra
bionic
needed
focal
needed
jammy
needed
kinetic
ignored
lunar
not-affected
mantic
not-affected
noble
not-affected
trusty
ignored
xenial
needs-triage
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
pcs
RHEL 8
0:0.10.14-5.el8_7.2
fixed
RHEL 8.1 E4S
0:0.10.2-4.el8_1.3
fixed
RHEL 8.2 E4S
0:0.10.4-6.el8_2.4
fixed
RHEL 8.2 TUS
0:0.10.4-6.el8_2.4
fixed
RHEL 8.4 AUS
0:0.10.8-1.el8_4.3
fixed
RHEL 8.4 E4S
0:0.10.8-1.el8_4.3
fixed
RHEL 8.4 EUS
0:0.10.8-1.el8_4.3
fixed
RHEL 8.4 TUS
0:0.10.8-1.el8_4.3
fixed
RHEL 8.6 AUS
0:0.10.12-6.el8_6.3
fixed
RHEL 8.6 E4S
0:0.10.12-6.el8_6.3
fixed
RHEL 8.6 EUS
0:0.10.12-6.el8_6.3
fixed
RHEL 8.6 TUS
0:0.10.12-6.el8_6.3
fixed
RHEL 9
0:0.11.3-4.el9_1.2
fixed
pcs-snmp
RHEL 8
0:0.10.14-5.el8_7.2
fixed
RHEL 8.1 E4S
0:0.10.2-4.el8_1.3
fixed
RHEL 8.2 E4S
0:0.10.4-6.el8_2.4
fixed
RHEL 8.2 TUS
0:0.10.4-6.el8_2.4
fixed
RHEL 8.4 AUS
0:0.10.8-1.el8_4.3
fixed
RHEL 8.4 E4S
0:0.10.8-1.el8_4.3
fixed
RHEL 8.4 EUS
0:0.10.8-1.el8_4.3
fixed
RHEL 8.4 TUS
0:0.10.8-1.el8_4.3
fixed
RHEL 8.6 AUS
0:0.10.12-6.el8_6.3
fixed
RHEL 8.6 E4S
0:0.10.12-6.el8_6.3
fixed
RHEL 8.6 EUS
0:0.10.12-6.el8_6.3
fixed
RHEL 8.6 TUS
0:0.10.12-6.el8_6.3
fixed
RHEL 9
0:0.11.3-4.el9_1.2
fixed
Common Weakness Enumeration
References
https://github.com/advisories/GHSA-8x94-hmjh-97hq
https://github.com/sinatra/sinatra/commit/ea8fc9495a350f7551b39e3025bfcd06f49f363b
https://github.com/sinatra/sinatra/security/advisories/GHSA-2x8x-jmrp-phxw
https://lists.debian.org/debian-lts-announce/2023/01/msg00005.html
https://www.blackhat.com/docs/eu-14/materials/eu-14-Hafif-Reflected-File-Download-A-New-Web-Attack-Vector.pdf
https://github.com/advisories/GHSA-8x94-hmjh-97hq
https://github.com/sinatra/sinatra/commit/ea8fc9495a350f7551b39e3025bfcd06f49f363b
https://github.com/sinatra/sinatra/security/advisories/GHSA-2x8x-jmrp-phxw
https://lists.debian.org/debian-lts-announce/2023/01/msg00005.html
https://lists.debian.org/debian-lts-announce/2024/09/msg00020.html
https://www.blackhat.com/docs/eu-14/materials/eu-14-Hafif-Reflected-File-Download-A-New-Web-Attack-Vector.pdf