VIR Vulnerability Intelligence Relay

Package impact

ruby RUBYGEMS / rack-session

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-39324 critical 9.5 2mo ago Rack::Session::Cookie secrets: decrypt failure fallback enables secretless session forgery and Marshal deserialization