{"vulnerability": "cve-2022-24790", "sightings": [{"uuid": "c9218591-cf10-46cb-b1a0-39f24029762f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24790", "type": "seen", "source": "https://t.me/cibsecurity/39880", "content": "\u203c CVE-2022-24790 \u203c\n\nPuma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly validate that the incoming HTTP request matches the RFC7230 standard, Puma and the frontend proxy may disagree on where a request starts and ends. This would allow requests to be smuggled via the front-end proxy to Puma. The vulnerability has been fixed in 5.6.4 and 4.3.12. Users are advised to upgrade as soon as possible. Workaround: when deploying a proxy in front of Puma, turning on any and all functionality to make sure that the request matches the RFC7230 standard.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-31T02:17:52.000000Z"}, {"uuid": "428d5838-b477-4802-a9a9-dd897d9efe42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24790", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mphdpyhvzm2w", "content": "\ud83d\udccc CVE-2022-24790 - Puma is a simple, fast, multi-threaded, parallel HTTP 1.1 server for Ruby/Rack applications. When using Puma behind a proxy that does not properly val... https://www.cyberhub.blog/cves/CVE-2022-24790", "creation_timestamp": "2026-06-29T20:37:06.275049Z"}]}