CVE-2025-61780 (rack): Rack has a Possible Information Disclosure Vulnerability

CVE-2025-61780 (rack): Rack has a Possible Information Disclosure Vulnerability

ADVISORIES CVE-2025-61780 (NVD) GHSA-r657-rxjc-j557 Vendor Advisory GEM rack SEVERITY CVSS v3.x: 5.8 (Medium) PATCHED VERSIONS ~> 2.2.20 ~> 3.1.18 >= 3.2.3 DESCRIPTION Summary A possible information disclosure vulnerability existed in when running behind a proxy that supports headers (such as Nginx).

Source: RUBYLAND

Date:

11 October 2025

Categorie(s):

Tag(s):

IT, Open Source, Open Source Software, Security Pro, Sinatra

Thieves order a tasty takeout of names and addresses from DoorDash18 November 2025
SAFE acquires Balbix to unify AI-native exposure management and cyber risk quantification18 November 2025
Apono raises $34M to tackle cloud privilege sprawl with Zero Standing Privilege model18 November 2025
DoorDash Confirms Data Breach Exposing Customer Personal Information18 November 2025
Vanta launches Agentic Trust Platform to unify compliance, risk and trust programs18 November 2025