Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2023-38037

MEDIUM
Published 2025-01-09T00:33:47.704Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2023-38037. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.0
5.5
/10
CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:L
Base Score Metrics
Exploitability: N/A Impact: N/A

EPSS Score

v2025.03.14
0.001
probability
of exploitation in the wild

There is a 0.1% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-06-25
Exploit Probability
Percentile: 0.272
Higher than 27.2% of all CVEs

Attack Vector Metrics

Attack Vector
Not Available
Attack Complexity
Not Available
Privileges Required
Not Available
User Interaction
Not Available
Scope
Not Available

Impact Metrics

Confidentiality
Not Available
Integrity
Not Available
Availability
Not Available

Description

ActiveSupport::EncryptedFile writes contents that will be encrypted to a
temporary file. The temporary file's permissions are defaulted to the user's
current `umask` settings, meaning that it's possible for other users on the
same system to read the contents of the temporary file.

Attackers that have access to the file system could possibly read the contents
of this temporary file while a user is editing it.

All users running an affected release should either upgrade or use one of the
workarounds immediately.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Rails

ActiveSupport

Affected Versions:

>= 5.2.0 5.2.0 7.0.7.1, 6.1.7.5

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

✓ GitHub Reviewed MODERATE

Active Support Possibly Discloses Locally Encrypted Files

GHSA-cr5q-6q9f-rq6q

Advisory Details

There is a possible file disclosure of locally encrypted files in Active Support. This vulnerability has been assigned the CVE identifier CVE-2023-38037. Versions Affected: >= 5.2.0 Not affected: < 5.2.0 Fixed Versions: 7.0.7.1, 6.1.7.5 # Impact ActiveSupport::EncryptedFile writes contents that will be encrypted to a temporary file. The temporary file’s permissions are defaulted to the user’s current umask settings, meaning that it’s possible for other users on the same system to read the contents of the temporary file. Attackers that have access to the file system could possibly read the contents of this temporary file while a user is editing it. All users running an affected release should either upgrade or use one of the workarounds immediately. # Releases The fixed releases are available at the normal locations. # Workarounds To work around this issue, you can set your umask to be more restrictive like this: ```ruby $ umask 0077 ```

Affected Packages

RubyGems activesupport
ECOSYSTEM: ≥5.2.0 <6.1.7.5
RubyGems activesupport
ECOSYSTEM: ≥7.0.0 <7.0.7.1

CVSS Scoring

CVSS Score

5.0

CVSS Vector

CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:L

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2023-38037
WEB https://github.com/rails/rails/commit/a21d6edf35a60383dfa6c4da49e4b1aef5f00731
WEB https://discuss.rubyonrails.org/t/cve-2023-38037-possible-file-disclosure-of-locally-encrypted-files/83544
PACKAGE https://github.com/rails/rails
WEB https://github.com/rails/rails/releases/tag/v7.0.7.1
WEB https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activesupport/CVE-2023-38037.yml
WEB https://security.netapp.com/advisory/ntap-20250214-0010

Advisory provided by GitHub Security Advisory Database. Published: August 23, 2023, Modified: February 18, 2025

References

https://discuss.rubyonrails.org/t/cve-2023-38037-possible-file-disclosure-of-locally-encrypted-files/83544
Published: 2025-01-09T00:33:47.704Z
Last Modified: 2025-02-15T00:10:27.790Z
Copied to clipboard!