Vulnerability Description
A client side enforcement of server side security vulnerability exists in rails < 5.2.4.2 and rails < 6.0.3.1 ActiveStorage's S3 adapter that allows the Content-Length of a direct file upload to be modified by an end user bypassing upload limits.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Rubyonrails | Rails | < 5.2.4.2 |
| Debian | Debian Linux | 10.0 |
Related Weaknesses (CWE)
References
- https://groups.google.com/g/rubyonrails-security/c/PjU3946mreQMailing ListPatchThird Party Advisory
- https://hackerone.com/reports/789579ExploitThird Party Advisory
- https://www.debian.org/security/2020/dsa-4766Third Party Advisory
- https://groups.google.com/g/rubyonrails-security/c/PjU3946mreQMailing ListPatchThird Party Advisory
- https://hackerone.com/reports/789579ExploitThird Party Advisory
- https://www.debian.org/security/2020/dsa-4766Third Party Advisory
FAQ
What is CVE-2020-8162?
CVE-2020-8162 is a vulnerability with a CVSS score of 7.5 (HIGH). A client side enforcement of server side security vulnerability exists in rails < 5.2.4.2 and rails < 6.0.3.1 ActiveStorage's S3 adapter that allows the Content-Length of a direct file upload to be mo...
How severe is CVE-2020-8162?
CVE-2020-8162 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-8162?
Check the references section above for vendor advisories and patch information. Affected products include: Rubyonrails Rails, Debian Debian Linux.