Launch Week Day 1: Announcing Security Design Review
Start for Free
rubygems

activestorage

View on rubygems registry
10 Total advisories
10 Vulnerabilities
0 Malware

Vulnerabilities

UNKNOWN
RubyGems

CVE-2026-33195

Rails Active Storage has possible Path Traversal in DiskService
UNKNOWN
RubyGems

CVE-2026-33202

Rails Active Storage has possible glob injection in its DiskService
UNKNOWN
RubyGems

CVE-2026-33174

Rails Active Storage has a possible DoS vulnerability when in proxy mode via Range requests
UNKNOWN
RubyGems

CVE-2026-33173

Rails Active Storage has possible content type bypass via metadata in direct uploads
MEDIUM 6.5
RubyGems

CVE-2026-33658

Rails Active Storage has a possible DoS vulnerability in proxy mode via multi-range requests
CRITICAL 9.8
RubyGems

CVE-2022-21831

Possible code injection vulnerability in Rails / Active Storage
UNKNOWN
RubyGems

CVE-2025-24293

Active Storage allowed transformation methods that were potentially unsafe
MEDIUM 5.3
RubyGems

CVE-2024-26144

Rails has possible Sensitive Session Information Leak in Active Storage
HIGH 7.5
RubyGems

CVE-2020-8162

Circumvention of file size limits in ActiveStorage
MEDIUM 6.5
RubyGems

CVE-2018-16477

Exposure of Sensitive Information to an Unauthorized Actor in activestorage

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes