Known Vulnerabilities for products from Rack
Listed below are 10 of the newest known vulnerabilities associated with the vendor "Rack".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-39324 json | Rack::Session is a session management implementation for Rack. From 2.0.0 to before 2.1.2, Rack::Session::Cookie incorrectly ... | Not Provided | 2026-04-07 | 2026-04-15 |
| CVE-2026-34835 json | Not Provided | 2026-04-02 | 2026-04-02 | |
| CVE-2026-34831 json | Not Provided | 2026-04-02 | 2026-04-03 | |
| CVE-2026-34830 json | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Sendfile#map_accel_path inter... | Not Provided | 2026-04-02 | 2026-04-16 |
| CVE-2026-34829 json | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Multipart::Parser only wraps ... | Not Provided | 2026-04-02 | 2026-04-16 |
| CVE-2026-34827 json | Not Provided | 2026-04-02 | 2026-04-02 | |
| CVE-2026-34826 json | Not Provided | 2026-04-02 | 2026-04-03 | |
| CVE-2026-34786 json | Not Provided | 2026-04-02 | 2026-04-03 | |
| CVE-2026-34785 json | Not Provided | 2026-04-02 | 2026-04-02 | |
| CVE-2026-34763 json | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Directory interpolates the co... | Not Provided | 2026-04-02 | 2026-04-16 |
| CVE-2026-34230 json | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Utils.select_best_encoding pr... | Not Provided | 2026-04-02 | 2026-04-16 |
| CVE-2026-32762 json | Rack is a modular Ruby web server interface. From versions 3.0.0.beta1 to before 3.1.21 and 3.2.0 to before 3.2.6, Rack::Util... | Not Provided | 2026-04-02 | 2026-04-21 |
| CVE-2026-26962 json | Rack is a modular Ruby web server interface. From version 3.2.0 to before version 3.2.6, Rack::Multipart::Parser unfolds fold... | Not Provided | 2026-04-02 | 2026-04-21 |
| CVE-2026-26961 json | Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Multipart::Parser extracts th... | Not Provided | 2026-04-02 | 2026-04-16 |