CVE-2025-30221 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Pitchfork is a preforking HTTP server for Rack applications. Versions prior to 0.11.0 are vulnerable to HTTP Response Header Injection when used in conjunction…
Medium CVSS: 4.3

CVE-2025-30221

Pitchfork is a preforking HTTP server for Rack applications. Versions prior to 0.11.0 are vulnerable to HTTP Response Header Injection when used in conjunction with Rack 3. The issue was fixed in Pitchfork release 0.11.0. No known workarounds are available.
Vendor
-
Product
-
CWE
CWE-113
Yayın Tarihi
2025-03-27 15:16:02
Güncelleme
2025-03-27 16:45:12
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-113 MEDIUM 2025

Referanslar

https://github.com/Shopify/pitchfork/commit/17ed9b61bf9f58957065f7405b66102daf86bf55 https://github.com/Shopify/pitchfork/security/advisories/GHSA-pfqj-w6r6-g86v