PT-2018-2307 · Rails+1 · Sprockets+1

Orange Tsai

·

Published

2018-06-19

·

Updated

2026-03-13

·

CVE-2018-3760

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Sprockets versions 4.0.0.beta7 and lower Sprockets versions 3.7.1 and lower Sprockets versions 2.12.4 and lower
Description The issue is related to errors in request processing, allowing a remote attacker to read files outside an application's root directory and gain unauthorized access to protected information. Specially crafted requests can be used to access files on the filesystem outside an application's root directory when the Sprockets server is used in production.
Recommendations For versions 4.0.0.beta7 and lower, 3.7.1 and lower, 2.12.4 and lower, upgrade to a newer version immediately. As a temporary workaround, in Rails applications, set config.assets.compile = false and config.public file server.enabled = true in an initializer and precompile the assets. Note that this workaround may not be possible in all hosting environments, and upgrading is advised.

Exploit

Fix

Information Disclosure

Path traversal

Weakness Enumeration

CWE-200CWE-22

Related Identifiers

BDU:2019-00440
CVE-2018-3760
DLA-1419-1
DSA-4242-1
GHSA-PR3H-JJHJ-573X
OPENSUSE-SU-2018_1854-1
OPENSUSE-SU-2018_2124-1
OPENSUSE-SU-2024:11354-1
OPENSUSE-SU-2024:11355-1
OPENSUSE-SU-2024:11906-1
OPENSUSE-SU-2024:13169-1
OPENSUSE-SU-2024:13170-1
OPENSUSE-SU-2024:14075-1
OPENSUSE-SU-2024:14177-1
OPENSUSE-SU-2025:15127-1
OPENSUSE-SU-2025:15128-1
OPENSUSE-SU-2026:10364-1
OPENSUSE-SU-2026:10365-1
RHSA-2018:2244
RHSA-2018:2245
RHSA-2018:2561
RHSA-2018:2745
SUSE-SU-2018:1994-1
SUSE-SU-2018:2176-1
SUSE-SU-2018:2217-1
SUSE-SU-2018:2603-1
SUSE-SU-2018:2762-1
SUSE-SU-2018_1994-1

Affected Products

Sprockets
Suse