<p>Upgrade <code>activestorage</code> to version 5.2.1.1 or higher.</p>

Access Restriction Bypass Affecting activestorage package, versions <5.2.1.1

Snyk CVSS

Attack Complexity Low

Threat Intelligence

EPSS 0.08% (35^th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Snyk ID SNYK-RUBY-ACTIVESTORAGE-72641
published 28 Nov 2018
disclosed 28 Nov 2018
credit Unknown

Report a new vulnerability Found a mistake?

Introduced: 28 Nov 2018

CVE-2018-16477 Open this link in a new tab CWE-284 Open this link in a new tab

How to fix?

Upgrade activestorage to version 5.2.1.1 or higher.

Overview

activestorage attaches cloud and local files in Rails applications.

Affected versions o f this package are vulnerable to Access Restriction Bypass. Signed download URLs generated by ActiveStorage for Google Cloud Storage service and Disk service include content-disposition and content-type parameters that an attacker can modify. This can be used to upload specially crafted HTML files and have them served and executed inline.

References

https://groups.google.com/forum/%23%21topic/rubyonrails-security/3KQRnXDIuLg