Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-5x54-hckg-x7b8
Vulnerability ID VCID-5x54-hckg-x7b8
Aliases CVE-2018-16477
GHSA-7rr7-rcjw-56vj
Summary Exposure of Sensitive Information to an Unauthorized Actor A bypass vulnerability in Active Storage for Google Cloud Storage and Disk services allow an attacker to modify the `content-disposition` and `content-type` parameters which can be used in with HTML files and have them executed inline. Additionally, if combined with other techniques such as cookie bombing and specially crafted AppCache manifests, an attacker can gain access to private signed URLs within a specific storage path. This vulnerability has been fixed
Status Published
Exploitability 0.5
Weighted Severity 6.2
Risk 3.1
Affected and Fixed Packages Package Details
Weaknesses (3)
CWE-1035 OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
CWE-937 OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
System Score Found at
epss 0.0026 https://api.first.org/data/v1/epss?cve=CVE-2018-16477
epss 0.0026 https://api.first.org/data/v1/epss?cve=CVE-2018-16477
epss 0.0026 https://api.first.org/data/v1/epss?cve=CVE-2018-16477
epss 0.0026 https://api.first.org/data/v1/epss?cve=CVE-2018-16477
epss 0.0026 https://api.first.org/data/v1/epss?cve=CVE-2018-16477
epss 0.0026 https://api.first.org/data/v1/epss?cve=CVE-2018-16477
epss 0.0026 https://api.first.org/data/v1/epss?cve=CVE-2018-16477
epss 0.0026 https://api.first.org/data/v1/epss?cve=CVE-2018-16477
epss 0.0026 https://api.first.org/data/v1/epss?cve=CVE-2018-16477
cvssv3.1 6.5 https://github.com/advisories/GHSA-7rr7-rcjw-56vj
cvssv3.1_qr MODERATE https://github.com/advisories/GHSA-7rr7-rcjw-56vj
generic_textual MODERATE https://github.com/advisories/GHSA-7rr7-rcjw-56vj
cvssv3.1 6.5 https://groups.google.com/d/msg/rubyonrails-security/3KQRnXDIuLg/mByx5KkqBAAJ
generic_textual MODERATE https://groups.google.com/d/msg/rubyonrails-security/3KQRnXDIuLg/mByx5KkqBAAJ
cvssv3 6.5 https://groups.google.com/forum/#!topic/rubyonrails-security/3KQRnXDIuLg
cvssv3.1 6.5 https://nvd.nist.gov/vuln/detail/CVE-2018-16477
generic_textual MODERATE https://nvd.nist.gov/vuln/detail/CVE-2018-16477
cvssv3.1 6.5 https://weblog.rubyonrails.org/2018/11/27/Rails-4-2-5-0-5-1-5-2-have-been-released
generic_textual MODERATE https://weblog.rubyonrails.org/2018/11/27/Rails-4-2-5-0-5-1-5-2-have-been-released
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2018-16477
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16477
https://github.com/advisories/GHSA-7rr7-rcjw-56vj
https://groups.google.com/d/msg/rubyonrails-security/3KQRnXDIuLg/mByx5KkqBAAJ
https://groups.google.com/forum/#!topic/rubyonrails-security/3KQRnXDIuLg
https://weblog.rubyonrails.org/2018/11/27/Rails-4-2-5-0-5-1-5-2-have-been-released
https://weblog.rubyonrails.org/2018/11/27/Rails-4-2-5-0-5-1-5-2-have-been-released/
914848 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=914848
CVE-2018-16477 https://nvd.nist.gov/vuln/detail/CVE-2018-16477
No exploits are available.
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N Found at https://github.com/advisories/GHSA-7rr7-rcjw-56vj
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N Found at https://groups.google.com/d/msg/rubyonrails-security/3KQRnXDIuLg/mByx5KkqBAAJ
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2018-16477
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N Found at https://weblog.rubyonrails.org/2018/11/27/Rails-4-2-5-0-5-1-5-2-have-been-released
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.49345
EPSS Score 0.0026
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T12:48:10.117222+00:00 GitLab Importer Import https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/activestorage/CVE-2018-16477.yml 38.0.0