🟠 CVE-2026-34829 - High (7.5)

Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Multipart::Parser only wraps the request body in a BoundedIO when CONTENT_LENGTH is present. When a multipart/form-data request is sent without a Conte...

🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-34829/

#CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack