/
DirectorySecurity AdvisoriesPricing
Sign in
Security Advisories

CVE-2024-27456

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-27456

Severity

9.1

Critical

CVSS V3

Description

rack-cors (aka Rack CORS Middleware) 2.0.1 has 0666 permissions for the .rb files.

References

  • https://images.chainguard.dev/security/CGA-2g6w-p78v-mqqh
  • https://github.com/advisories/GHSA-785g-282q-pwvx
  • https://images.chainguard.dev/security/CGA-j38q-gp2h-cm9m
  • https://images.chainguard.dev/security/CGA-52q5-pc74-h2gp
  • https://images.chainguard.dev/security/CGA-7hqw-fp99-868r
  • https://github.com/cyu/rack-cors/issues/274

Affected packages

Safe Source for Open Sourceâ„¢
Contact us
© 2025 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard ContainersChainguard LibrariesChainguard VMsIntegrationsPricing

Solutions

FedRAMPPCI DSSGolden ImagesCVE RemediationPublic Sector

Customers

Customer StoriesChainguard Reviews

Resources

Events & WebinarsChainguard CoursesDocumentationTrust Center

Company

About UsBlogPartnersNewsroomCareersLegal