CVE-2026-44837
view_component: System Test Entry Point Path Check Allows Sibling Directory Escape
CVSS Score
5.9
EPSS Score
0.0%
EPSS Percentile
1th
view_component is a framework for building reusable, testable, and encapsulated view components in Ruby on Rails. From 3.0.0 to 4.9.0, the system test entrypoint canonicalizes a user-controlled file path with File.realpath, then checks whether the resolved path starts with the temp directory path. This is not a safe containment check because sibling directories can share the same string prefix. This vulnerability is fixed in 4.9.0.
| CWE | CWE-187 |
| Vendor | viewcomponent |
| Product | view_component |
| Published | May 26, 2026 |
| Last Updated | May 28, 2026 |
Stay Ahead of the Next One
Get instant alerts for viewcomponent view_component
Be the first to know when new medium vulnerabilities affecting viewcomponent view_component are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Affected Versions
ViewComponent / view_component
>= 3.0.0, < 4.9.0