CVE-2020-8162

A client side enforcement of server side security vulnerability exists in rails < 5.2.4.2 and rails < 6.0.3.1 ActiveStorage's S3 adapter that allows the Content-Length of a direct file upload to be modified by an end user bypassing upload limits.

Published: Jun 19, 2020
Updated: May 9, 2024
CVE: CVE-2020-8162
GHSA: GHSA-m42x-37p3-fv5w
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:P/A:N

CWEs:

CWE-434
CWE-602

Affected Software
References

Software	From	Fixed in
rubyonrails / rails	6.0.0	6.0.3.1
rubyonrails / rails	-	5.2.4.2
debian / debian_linux	10.0	10.0.x
activestorage	5.0.0	5.2.4.3
activestorage	6.0.0	6.0.3.1

https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activestorage/CVE-2020-8162.yml
https://groups.google.com/forum/#!topic/rubyonrails-security/PjU3946mreQ
https://groups.google.com/g/rubyonrails-security/c/PjU3946mreQ
https://hackerone.com/reports/789579
https://www.debian.org/security/2020/dsa-4766

Vulnerability Database

289,697

CVE-2020-8162