CVE-2014-7829 — Path Traversal in Project Actionpack

CWE-22 — Path Traversal CWE-200 — Sensitive Information Exposure10 documents8 sources

Severity

5.0MEDIUMNVD

CNA4.3GHSA4.3OSV4.3

EPSS

0.3%

top 49.82%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Rubyonrails Rails Actionpack Project Actionpack Opensuse +1 more

Timeline

PublishedNov 18

Latest updateMar 29

Description

Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static.rb in Action Pack in Ruby on Rails 3.x before 3.2.21, 4.0.x before 4.0.12, 4.1.x before 4.1.8, and 4.2.x before 4.2.0.beta4, when serve_static_assets is enabled, allows remote attackers to determine the existence of files outside the application root via vectors involving a \ (backslash) character, a similar issue to CVE-2014-7818.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages5 packages

▶RubyGemsactionpack_project/actionpack4.1.0 — 4.1.8+3

▶Debianrubyonrails/rails< 2:4.1.8-1+3

▶NVDrubyonrails/rails68 versions+67

▶NVDrubyonrails/ruby_on_rails4 versions+3

▶NVDopensuse/opensuse12.3, 13.1, 13.2+2

🔴Vulnerability Details

OSV

Directory traversal vulnerability in actionpack↗2017-10-24

▶

GHSA

Directory traversal vulnerability in actionpack↗2017-10-24

▶

CVEList

CVE-2014-7829: Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static↗2014-11-18

▶

OSV

CVE-2014-7829: Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/static↗2014-11-18

▶

📋Vendor Advisories

Red Hat

rubygem-actionpack: incomplete fix for CVE-2014-7818, arbitrary file existence disclosure↗2014-11-17

▶

Debian

CVE-2014-7829: rails - Directory traversal vulnerability in actionpack/lib/action_dispatch/middleware/s...↗2014

▶

💬Community

HackerOne

reports.breadcrumb.com is vulnerable for Arbitrary file existence disclosur CVE-2014-7829↗2018-03-29

▶

Bugzilla

CVE-2014-7829 rubygem-actionpack: incomplete fix for CVE-2014-7818, arbitrary file existence disclosure [fedora-all]↗2014-11-18

▶

Bugzilla

CVE-2014-7829 rubygem-actionpack: incomplete fix for CVE-2014-7818, arbitrary file existence disclosure↗2014-11-17

▶