Threat Advisories - NVD Disclosed March 27, 2019

CVE-2019-5418

Ruby on Rails File Content Disclosure Vulnerability

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

A file content disclosure vulnerability in Ruby on Rails allows attackers to expose arbitrary file contents from affected systems. This poses a business risk by potentially revealing sensitive data. Organizations should apply vendor updates to mitigate this exposure.

NVD published: March 27, 2019 • CISA KEV