CVE-2018-3760
There is an information leak vulnerability in Sprockets. Versions Affected: 4.0.0.beta7 and lower, 3.7.1 and lower, 2.12.4 and lower. Specially...
Basic Information
- CVE State
- PUBLISHED
- Reserved Date
- December 28, 2017
- Published Date
- June 26, 2018
- Last Updated
- September 16, 2024
- Vendor
- HackerOne
- Product
- Sprockets
- Description
- There is an information leak vulnerability in Sprockets. Versions Affected: 4.0.0.beta7 and lower, 3.7.1 and lower, 2.12.4 and lower. Specially crafted requests can be used to access files that exists on the filesystem that is outside an application's root directory, when the Sprockets server is used in production. All users running an affected release should either upgrade or use one of the work arounds immediately.
CVSS Scores
EPSS Score
- Score
- 93.60% (Percentile: 99.82%) as of 2025-04-29
Exploit Status
- Exploited in the Wild
- Yes (added 2025-04-27 00:00:00 UTC) Source
References
https://github.com/rails/sprockets/commit/c09131cf5b2c479263939c8582e22b98ed616c5fhttps://github.com/rails/sprockets/commit/9c34fa05900b968d74f08ccf40917848a7be9441https://github.com/rails/sprockets/commit/18b8a7f07a50c245e9aee7854ecdbe606bbd8bb5
https://access.redhat.com/errata/RHSA-2018:2745
https://groups.google.com/d/msg/rubyonrails-security/ft_J--l55fM/7roDfQ50BwAJ
https://access.redhat.com/errata/RHSA-2018:2244
https://access.redhat.com/errata/RHSA-2018:2561
https://access.redhat.com/errata/RHSA-2018:2245
https://www.debian.org/security/2018/dsa-4242
Known Exploited Vulnerability Information
| Source | Added Date |
|---|---|
| The Shadowserver (via CIRCL) | 2025-04-27 00:00:00 UTC |
Scanner Integrations
| Scanner | URL | Date Detected |
|---|---|---|
| Nuclei | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2018/CVE-2018-3760.yaml | 2025-04-26 00:00:00 UTC |
Potential Proof of Concepts
Warning: These PoCs have not been tested and could contain malware. Use at your own risk.
wudidwo/CVE-2018-3760-poc
Type: github • Created: 2024-11-19 11:52:53 UTC • Stars: 0
cyberharsh/Ruby-On-Rails-Path-Traversal-Vulnerability-CVE-2018-3760-
Type: github • Created: 2020-06-24 12:15:07 UTC • Stars: 2
mpgn/CVE-2018-3760
Type: github • Created: 2019-10-21 14:15:09 UTC • Stars: 8
Rails Asset Pipeline Directory Traversal Vulnerability