httparty Multipart/Form-Data Request Tampering Vulnerability | VulnCheck Advisories

Go back

httparty Multipart/Form-Data Request Tampering Vulnerability

severity: high
date: January 4, 2024
Affecting: httparty versions less than or equal to 0.20.0
CVE: CVE-2024-22049
CVE type: External Control of Assumed-Immutable Web Parameter
CVSS: 9.8
CVSS V3 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
References: Vendor Advisory
Patch
Related Link
Third Party Advisory