Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-21831 (GCVE-0-2022-21831)
Vulnerability from cvelistv5
Published
2022-05-26 00:00
Modified
2024-08-03 02:53
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-94 - Code Injection ()
Summary
A code injection vulnerability exists in the Active Storage >= v5.2.0 that could allow an attacker to execute code via image_processing arguments.
References
| URL | Tags | ||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| n/a | https://github.com/rails/rails |
Version: 7.0.2.3, 6.1.4.7, 6.0.4.7, 5.2.6.3 |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T02:53:36.300Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://github.com/advisories/GHSA-w749-p3v6-hccq"
},
{
"name": "[debian-lts-announce] 20220903 [SECURITY] [DLA 3093-1] rails security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20221118-0001/"
},
{
"name": "DSA-5372",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.debian.org/security/2023/dsa-5372"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "https://github.com/rails/rails",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "7.0.2.3, 6.1.4.7, 6.0.4.7, 5.2.6.3"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-94",
"description": "Code Injection (CWE-94)",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-03-14T00:00:00",
"orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"shortName": "hackerone"
},
"references": [
{
"url": "https://github.com/advisories/GHSA-w749-p3v6-hccq"
},
{
"name": "[debian-lts-announce] 20220903 [SECURITY] [DLA 3093-1] rails security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
},
{
"url": "https://security.netapp.com/advisory/ntap-20221118-0001/"
},
{
"name": "DSA-5372",
"tags": [
"vendor-advisory"
],
"url": "https://www.debian.org/security/2023/dsa-5372"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"assignerShortName": "hackerone",
"cveId": "CVE-2022-21831",
"datePublished": "2022-05-26T00:00:00",
"dateReserved": "2021-12-10T00:00:00",
"dateUpdated": "2024-08-03T02:53:36.300Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2022-21831\",\"sourceIdentifier\":\"support@hackerone.com\",\"published\":\"2022-05-26T17:15:09.017\",\"lastModified\":\"2024-11-21T06:45:31.367\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments.\"},{\"lang\":\"es\",\"value\":\"Se presenta una vulnerabilidad de inyecci\u00f3n de c\u00f3digo en Active Storage versiones posteriores a v5.2.0 incluy\u00e9ndola, que podr\u00eda permitir a un atacante ejecutar c\u00f3digo por medio de argumentos image_processing\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"support@hackerone.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*\",\"versionStartIncluding\":\"5.2.0\",\"versionEndExcluding\":\"5.2.6.3\",\"matchCriteriaId\":\"D24017C1-76C5-47FE-8D2D-6DC06276275F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*\",\"versionStartIncluding\":\"6.0.0\",\"versionEndExcluding\":\"6.0.4.7\",\"matchCriteriaId\":\"E453F0F6-D607-4FCE-B407-9461546197AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*\",\"versionStartIncluding\":\"6.1.0\",\"versionEndExcluding\":\"6.1.4.7\",\"matchCriteriaId\":\"D8D86489-28E0-444A-9A93-19D87079F54B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*\",\"versionStartIncluding\":\"7.0.0\",\"versionEndExcluding\":\"7.0.2.3\",\"matchCriteriaId\":\"CD5A13EC-AC72-4FD2-9B2B-3E57628545C2\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}]}]}],\"references\":[{\"url\":\"https://github.com/advisories/GHSA-w749-p3v6-hccq\",\"source\":\"support@hackerone.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html\",\"source\":\"support@hackerone.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20221118-0001/\",\"source\":\"support@hackerone.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5372\",\"source\":\"support@hackerone.com\"},{\"url\":\"https://github.com/advisories/GHSA-w749-p3v6-hccq\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20221118-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5372\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
opensuse-su-2024:11903-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1 on GA media
Notes
Title of the patch
ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1 on GA media
Description of the patch
These are all security issues fixed in the ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-11903
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11903",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11903-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-21831 page",
"url": "https://www.suse.com/security/cve/CVE-2022-21831/"
}
],
"title": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11903-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64",
"product": {
"name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64",
"product_id": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le",
"product": {
"name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le",
"product_id": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x",
"product": {
"name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x",
"product_id": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64",
"product": {
"name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64",
"product_id": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64"
},
"product_reference": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le"
},
"product_reference": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x"
},
"product_reference": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64"
},
"product_reference": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-21831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-21831"
}
],
"notes": [
{
"category": "general",
"text": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-21831",
"url": "https://www.suse.com/security/cve/CVE-2022-21831"
},
{
"category": "external",
"summary": "SUSE Bug 1197252 for CVE-2022-21831",
"url": "https://bugzilla.suse.com/1197252"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x",
"openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2022-21831"
}
]
}
opensuse-su-2025:15113-1
Vulnerability from csaf_opensuse
Published
2025-05-17 00:00
Modified
2025-05-17 00:00
Summary
ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3 on GA media
Notes
Title of the patch
ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3 on GA media
Description of the patch
These are all security issues fixed in the ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2025-15113
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-15113",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15113-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2025:15113-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/46EQRIAH3FLDMDVYDHYXRLAPYFUK6NA6/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2025:15113-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/46EQRIAH3FLDMDVYDHYXRLAPYFUK6NA6/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-21831 page",
"url": "https://www.suse.com/security/cve/CVE-2022-21831/"
}
],
"title": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3 on GA media",
"tracking": {
"current_release_date": "2025-05-17T00:00:00Z",
"generator": {
"date": "2025-05-17T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:15113-1",
"initial_release_date": "2025-05-17T00:00:00Z",
"revision_history": [
{
"date": "2025-05-17T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64",
"product": {
"name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64",
"product_id": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le",
"product": {
"name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le",
"product_id": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x",
"product": {
"name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x",
"product_id": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64",
"product": {
"name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64",
"product_id": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64"
},
"product_reference": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le"
},
"product_reference": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x"
},
"product_reference": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64"
},
"product_reference": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-21831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-21831"
}
],
"notes": [
{
"category": "general",
"text": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64",
"openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le",
"openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x",
"openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-21831",
"url": "https://www.suse.com/security/cve/CVE-2022-21831"
},
{
"category": "external",
"summary": "SUSE Bug 1197252 for CVE-2022-21831",
"url": "https://bugzilla.suse.com/1197252"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64",
"openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le",
"openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x",
"openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64",
"openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le",
"openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x",
"openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-05-17T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2022-21831"
}
]
}
opensuse-su-2024:12880-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1 on GA media
Notes
Title of the patch
ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1 on GA media
Description of the patch
These are all security issues fixed in the ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-12880
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-12880",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_12880-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-21831 page",
"url": "https://www.suse.com/security/cve/CVE-2022-21831/"
}
],
"title": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:12880-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64",
"product": {
"name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64",
"product_id": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le",
"product": {
"name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le",
"product_id": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x",
"product": {
"name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x",
"product_id": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64",
"product": {
"name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64",
"product_id": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64"
},
"product_reference": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le"
},
"product_reference": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x"
},
"product_reference": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64"
},
"product_reference": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-21831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-21831"
}
],
"notes": [
{
"category": "general",
"text": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-21831",
"url": "https://www.suse.com/security/cve/CVE-2022-21831"
},
{
"category": "external",
"summary": "SUSE Bug 1197252 for CVE-2022-21831",
"url": "https://bugzilla.suse.com/1197252"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x",
"openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2022-21831"
}
]
}
opensuse-su-2024:14070-1
Vulnerability from csaf_opensuse
Published
2024-06-24 00:00
Modified
2024-06-24 00:00
Summary
ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1 on GA media
Notes
Title of the patch
ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1 on GA media
Description of the patch
These are all security issues fixed in the ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-14070
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-14070",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_14070-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-21831 page",
"url": "https://www.suse.com/security/cve/CVE-2022-21831/"
}
],
"title": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-24T00:00:00Z",
"generator": {
"date": "2024-06-24T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:14070-1",
"initial_release_date": "2024-06-24T00:00:00Z",
"revision_history": [
{
"date": "2024-06-24T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64",
"product": {
"name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64",
"product_id": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le",
"product": {
"name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le",
"product_id": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x",
"product": {
"name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x",
"product_id": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64",
"product": {
"name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64",
"product_id": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64"
},
"product_reference": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le"
},
"product_reference": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x"
},
"product_reference": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64"
},
"product_reference": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-21831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-21831"
}
],
"notes": [
{
"category": "general",
"text": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-21831",
"url": "https://www.suse.com/security/cve/CVE-2022-21831"
},
{
"category": "external",
"summary": "SUSE Bug 1197252 for CVE-2022-21831",
"url": "https://bugzilla.suse.com/1197252"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64",
"openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le",
"openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x",
"openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-24T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2022-21831"
}
]
}
ghsa-w749-p3v6-hccq
Vulnerability from github
Published
2022-03-08 21:25
Modified
2022-06-21 15:59
Severity ?
VLAI Severity ?
Summary
Possible code injection vulnerability in Rails / Active Storage
Details
The Active Storage module of Rails starting with version 5.2.0 is possibly vulnerable to code injection. This issue was patched in versions 5.2.6.3, 6.0.4.7, 6.1.4.7, and 7.0.2.3. To work around this issue, applications should implement a strict allow-list on accepted transformation methods or arguments. Additionally, a strict ImageMagick security policy will help mitigate this issue.
{
"affected": [
{
"database_specific": {
"last_known_affected_version_range": "\u003c= 5.2.6.2"
},
"package": {
"ecosystem": "RubyGems",
"name": "activestorage"
},
"ranges": [
{
"events": [
{
"introduced": "5.2.0"
},
{
"fixed": "5.2.6.3"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"database_specific": {
"last_known_affected_version_range": "\u003c= 6.0.4.6"
},
"package": {
"ecosystem": "RubyGems",
"name": "activestorage"
},
"ranges": [
{
"events": [
{
"introduced": "6.0.0"
},
{
"fixed": "6.0.4.7"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"database_specific": {
"last_known_affected_version_range": "\u003c= 6.1.4.6"
},
"package": {
"ecosystem": "RubyGems",
"name": "activestorage"
},
"ranges": [
{
"events": [
{
"introduced": "6.1.0"
},
{
"fixed": "6.1.4.7"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"database_specific": {
"last_known_affected_version_range": "\u003c= 7.0.2.2"
},
"package": {
"ecosystem": "RubyGems",
"name": "activestorage"
},
"ranges": [
{
"events": [
{
"introduced": "7.0.0"
},
{
"fixed": "7.0.2.3"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2022-21831"
],
"database_specific": {
"cwe_ids": [
"CWE-94"
],
"github_reviewed": true,
"github_reviewed_at": "2022-03-08T21:25:54Z",
"nvd_published_at": "2022-05-26T17:15:00Z",
"severity": "CRITICAL"
},
"details": "The Active Storage module of Rails starting with version 5.2.0 is possibly vulnerable to code injection. This issue was patched in versions 5.2.6.3, 6.0.4.7, 6.1.4.7, and 7.0.2.3. To work around this issue, applications should implement a strict allow-list on accepted transformation methods or arguments. Additionally, a strict ImageMagick security policy will help mitigate this issue.",
"id": "GHSA-w749-p3v6-hccq",
"modified": "2022-06-21T15:59:23Z",
"published": "2022-03-08T21:25:54Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-21831"
},
{
"type": "WEB",
"url": "https://github.com/rails/rails/commit/0a72f7d670e9aa77a0bb8584cb1411ddabb7546e"
},
{
"type": "ADVISORY",
"url": "https://github.com/advisories/GHSA-w749-p3v6-hccq"
},
{
"type": "PACKAGE",
"url": "https://github.com/rails/rails"
},
{
"type": "WEB",
"url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activestorage/CVE-2022-21831.yml"
},
{
"type": "WEB",
"url": "https://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
},
{
"type": "WEB",
"url": "https://rubysec.com/advisories/CVE-2022-21831"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20221118-0001"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2023/dsa-5372"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
],
"summary": "Possible code injection vulnerability in Rails / Active Storage"
}
wid-sec-w-2022-1280
Vulnerability from csaf_certbund
Published
2022-03-08 23:00
Modified
2023-03-12 23:00
Summary
Ruby on Rails: Schwachstelle ermöglicht Codeausführung
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Ruby on Rails ist ein in der Programmiersprache Ruby geschriebenes und quelloffenes Web Application Framework.
Angriff
Ein Angreifer kann eine Schwachstelle in Ruby on Rails ausnutzen, um beliebigen Programmcode auszuführen.
Betroffene Betriebssysteme
- UNIX
- Linux
- Windows
- Sonstiges
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Ruby on Rails ist ein in der Programmiersprache Ruby geschriebenes und quelloffenes Web Application Framework.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann eine Schwachstelle in Ruby on Rails ausnutzen, um beliebigen Programmcode auszuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- UNIX\n- Linux\n- Windows\n- Sonstiges",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2022-1280 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1280.json"
},
{
"category": "self",
"summary": "WID-SEC-2022-1280 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1280"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-5372 vom 2023-03-13",
"url": "https://lists.debian.org/debian-security-announce/2023/msg00061.html"
},
{
"category": "external",
"summary": "Ruby Security Advisory vom 2022-03-08",
"url": "https://rubyonrails.org/2022/3/8/Rails-7-0-2-3-6-1-4-7-6-0-4-7-and-5-2-6-3-have-been-released"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-3093 vom 2022-09-03",
"url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
}
],
"source_lang": "en-US",
"title": "Ruby on Rails: Schwachstelle erm\u00f6glicht Codeausf\u00fchrung",
"tracking": {
"current_release_date": "2023-03-12T23:00:00.000+00:00",
"generator": {
"date": "2024-08-15T17:34:30.109+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2022-1280",
"initial_release_date": "2022-03-08T23:00:00.000+00:00",
"revision_history": [
{
"date": "2022-03-08T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2022-09-04T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2023-03-12T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Debian aufgenommen"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Open Source Ruby on Rails \u003c 7.0.2.3",
"product": {
"name": "Open Source Ruby on Rails \u003c 7.0.2.3",
"product_id": "T022290",
"product_identification_helper": {
"cpe": "cpe:/a:rubyonrails:ruby_on_rails:7.0.2.3"
}
}
},
{
"category": "product_name",
"name": "Open Source Ruby on Rails \u003c 6.1.4.7",
"product": {
"name": "Open Source Ruby on Rails \u003c 6.1.4.7",
"product_id": "T022291",
"product_identification_helper": {
"cpe": "cpe:/a:rubyonrails:ruby_on_rails:6.1.4.7"
}
}
},
{
"category": "product_name",
"name": "Open Source Ruby on Rails \u003c 6.0.4.7",
"product": {
"name": "Open Source Ruby on Rails \u003c 6.0.4.7",
"product_id": "T022292",
"product_identification_helper": {
"cpe": "cpe:/a:rubyonrails:ruby_on_rails:6.0.4.7"
}
}
},
{
"category": "product_name",
"name": "Open Source Ruby on Rails \u003c 5.2.6.3",
"product": {
"name": "Open Source Ruby on Rails \u003c 5.2.6.3",
"product_id": "T022293",
"product_identification_helper": {
"cpe": "cpe:/a:rubyonrails:ruby_on_rails:5.2.6.3"
}
}
}
],
"category": "product_name",
"name": "Ruby on Rails"
}
],
"category": "vendor",
"name": "Open Source"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-21831",
"notes": [
{
"category": "description",
"text": "Es existiert eine Schwachstelle in Ruby on Rails. Der Fehler existiert im Active Storage Modul von Rails. Ein Angreifer kann diese Schwachstelle zur Ausf\u00fchrung von beliebigem Code ausnutzen."
}
],
"product_status": {
"known_affected": [
"2951"
]
},
"release_date": "2022-03-08T23:00:00.000+00:00",
"title": "CVE-2022-21831"
}
]
}
WID-SEC-W-2022-1280
Vulnerability from csaf_certbund
Published
2022-03-08 23:00
Modified
2023-03-12 23:00
Summary
Ruby on Rails: Schwachstelle ermöglicht Codeausführung
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Ruby on Rails ist ein in der Programmiersprache Ruby geschriebenes und quelloffenes Web Application Framework.
Angriff
Ein Angreifer kann eine Schwachstelle in Ruby on Rails ausnutzen, um beliebigen Programmcode auszuführen.
Betroffene Betriebssysteme
- UNIX
- Linux
- Windows
- Sonstiges
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Ruby on Rails ist ein in der Programmiersprache Ruby geschriebenes und quelloffenes Web Application Framework.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann eine Schwachstelle in Ruby on Rails ausnutzen, um beliebigen Programmcode auszuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- UNIX\n- Linux\n- Windows\n- Sonstiges",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2022-1280 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1280.json"
},
{
"category": "self",
"summary": "WID-SEC-2022-1280 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1280"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-5372 vom 2023-03-13",
"url": "https://lists.debian.org/debian-security-announce/2023/msg00061.html"
},
{
"category": "external",
"summary": "Ruby Security Advisory vom 2022-03-08",
"url": "https://rubyonrails.org/2022/3/8/Rails-7-0-2-3-6-1-4-7-6-0-4-7-and-5-2-6-3-have-been-released"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-3093 vom 2022-09-03",
"url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
}
],
"source_lang": "en-US",
"title": "Ruby on Rails: Schwachstelle erm\u00f6glicht Codeausf\u00fchrung",
"tracking": {
"current_release_date": "2023-03-12T23:00:00.000+00:00",
"generator": {
"date": "2024-08-15T17:34:30.109+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2022-1280",
"initial_release_date": "2022-03-08T23:00:00.000+00:00",
"revision_history": [
{
"date": "2022-03-08T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2022-09-04T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2023-03-12T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Debian aufgenommen"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Open Source Ruby on Rails \u003c 7.0.2.3",
"product": {
"name": "Open Source Ruby on Rails \u003c 7.0.2.3",
"product_id": "T022290",
"product_identification_helper": {
"cpe": "cpe:/a:rubyonrails:ruby_on_rails:7.0.2.3"
}
}
},
{
"category": "product_name",
"name": "Open Source Ruby on Rails \u003c 6.1.4.7",
"product": {
"name": "Open Source Ruby on Rails \u003c 6.1.4.7",
"product_id": "T022291",
"product_identification_helper": {
"cpe": "cpe:/a:rubyonrails:ruby_on_rails:6.1.4.7"
}
}
},
{
"category": "product_name",
"name": "Open Source Ruby on Rails \u003c 6.0.4.7",
"product": {
"name": "Open Source Ruby on Rails \u003c 6.0.4.7",
"product_id": "T022292",
"product_identification_helper": {
"cpe": "cpe:/a:rubyonrails:ruby_on_rails:6.0.4.7"
}
}
},
{
"category": "product_name",
"name": "Open Source Ruby on Rails \u003c 5.2.6.3",
"product": {
"name": "Open Source Ruby on Rails \u003c 5.2.6.3",
"product_id": "T022293",
"product_identification_helper": {
"cpe": "cpe:/a:rubyonrails:ruby_on_rails:5.2.6.3"
}
}
}
],
"category": "product_name",
"name": "Ruby on Rails"
}
],
"category": "vendor",
"name": "Open Source"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-21831",
"notes": [
{
"category": "description",
"text": "Es existiert eine Schwachstelle in Ruby on Rails. Der Fehler existiert im Active Storage Modul von Rails. Ein Angreifer kann diese Schwachstelle zur Ausf\u00fchrung von beliebigem Code ausnutzen."
}
],
"product_status": {
"known_affected": [
"2951"
]
},
"release_date": "2022-03-08T23:00:00.000+00:00",
"title": "CVE-2022-21831"
}
]
}
CERTFR-2022-AVI-220
Vulnerability from certfr_avis
Une vulnérabilité a été découverte dans Ruby on Rails. Elle permet à un attaquant de provoquer une exécution de code arbitraire à distance.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs et des mesures de contournement (cf. section Documentation).
Contournement provisoire
L'éditeur indique que les applications doivent implémenter une liste d'autorisation stricte sur les méthodes ou arguments de transformation acceptés. Une politique de sécurité stricte configurée sur image magick permet contourner la vulnérabilité.
- Ruby On Rails versions 5.2.x antérieures à 5.2.6.3
- Ruby On Rails versions 6.0.x antérieures à 6.0.4.7
- Ruby On Rails versions 6.1.x antérieures à 6.1.4.7
- Ruby On Rails versions 7.0.x antérieures à 7.0.2.3
Les versions antérieures à 5.2.0 ne sont pas affectées par la vulnérabilité.
Impacted products
| Vendor | Product | Description |
|---|
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [],
"affected_systems_content": "\u003cul\u003e \u003cli\u003eRuby On Rails versions 5.2.x ant\u00e9rieures \u00e0 5.2.6.3\u003c/li\u003e \u003cli\u003eRuby On Rails versions 6.0.x ant\u00e9rieures \u00e0 6.0.4.7\u003c/li\u003e \u003cli\u003eRuby On Rails versions 6.1.x ant\u00e9rieures \u00e0 6.1.4.7\u003c/li\u003e \u003cli\u003eRuby On Rails versions 7.0.x ant\u00e9rieures \u00e0 7.0.2.3\u003c/li\u003e \u003c/ul\u003e \u003cp\u003eLes versions ant\u00e9rieures \u00e0 5.2.0 ne sont pas affect\u00e9es par la vuln\u00e9rabilit\u00e9.\u003c/p\u003e ",
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs et des mesures de contournement (cf. section Documentation).\n\n## Contournement provisoire\n\nL\u0027\u00e9diteur indique que les applications doivent impl\u00e9menter une liste\nd\u0027autorisation stricte sur les m\u00e9thodes ou arguments de transformation\naccept\u00e9s. Une politique de s\u00e9curit\u00e9 stricte configur\u00e9e sur image magick\npermet contourner la vuln\u00e9rabilit\u00e9.\n",
"cves": [
{
"name": "CVE-2022-21831",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21831"
}
],
"initial_release_date": "2022-03-09T00:00:00",
"last_revision_date": "2022-03-09T00:00:00",
"links": [],
"reference": "CERTFR-2022-AVI-220",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2022-03-09T00:00:00.000000"
}
],
"risks": [
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
}
],
"summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Ruby on Rails. Elle permet \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance.\n",
"title": "Vuln\u00e9rabilit\u00e9 dans Ruby on Rails",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Ruby on Rails n-p-W1yxatI du 08 mars 2022",
"url": "https://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Rubysec CVE-2022-21831 du 08 mars 2022",
"url": "https://rubysec.com/advisories/CVE-2022-21831/"
}
]
}
fkie_cve-2022-21831
Vulnerability from fkie_nvd
Published
2022-05-26 17:15
Modified
2024-11-21 06:45
Severity ?
Summary
A code injection vulnerability exists in the Active Storage >= v5.2.0 that could allow an attacker to execute code via image_processing arguments.
References
| URL | Tags | ||
|---|---|---|---|
| support@hackerone.com | https://github.com/advisories/GHSA-w749-p3v6-hccq | Patch, Third Party Advisory | |
| support@hackerone.com | https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html | Mailing List, Third Party Advisory | |
| support@hackerone.com | https://security.netapp.com/advisory/ntap-20221118-0001/ | Third Party Advisory | |
| support@hackerone.com | https://www.debian.org/security/2023/dsa-5372 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/advisories/GHSA-w749-p3v6-hccq | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html | Mailing List, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://security.netapp.com/advisory/ntap-20221118-0001/ | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://www.debian.org/security/2023/dsa-5372 |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| rubyonrails | active_storage | * | |
| rubyonrails | active_storage | * | |
| rubyonrails | active_storage | * | |
| rubyonrails | active_storage | * | |
| debian | debian_linux | 10.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*",
"matchCriteriaId": "D24017C1-76C5-47FE-8D2D-6DC06276275F",
"versionEndExcluding": "5.2.6.3",
"versionStartIncluding": "5.2.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*",
"matchCriteriaId": "E453F0F6-D607-4FCE-B407-9461546197AD",
"versionEndExcluding": "6.0.4.7",
"versionStartIncluding": "6.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*",
"matchCriteriaId": "D8D86489-28E0-444A-9A93-19D87079F54B",
"versionEndExcluding": "6.1.4.7",
"versionStartIncluding": "6.1.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*",
"matchCriteriaId": "CD5A13EC-AC72-4FD2-9B2B-3E57628545C2",
"versionEndExcluding": "7.0.2.3",
"versionStartIncluding": "7.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments."
},
{
"lang": "es",
"value": "Se presenta una vulnerabilidad de inyecci\u00f3n de c\u00f3digo en Active Storage versiones posteriores a v5.2.0 incluy\u00e9ndola, que podr\u00eda permitir a un atacante ejecutar c\u00f3digo por medio de argumentos image_processing"
}
],
"id": "CVE-2022-21831",
"lastModified": "2024-11-21T06:45:31.367",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2022-05-26T17:15:09.017",
"references": [
{
"source": "support@hackerone.com",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/advisories/GHSA-w749-p3v6-hccq"
},
{
"source": "support@hackerone.com",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
},
{
"source": "support@hackerone.com",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20221118-0001/"
},
{
"source": "support@hackerone.com",
"url": "https://www.debian.org/security/2023/dsa-5372"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/advisories/GHSA-w749-p3v6-hccq"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20221118-0001/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.debian.org/security/2023/dsa-5372"
}
],
"sourceIdentifier": "support@hackerone.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-94"
}
],
"source": "support@hackerone.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-94"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
gsd-2022-21831
Vulnerability from gsd
Modified
2022-03-08 00:00
Details
There is a possible code injection vulnerability in the Active Storage module
of Rails. This vulnerability has been assigned the CVE identifier
CVE-2022-21831.
Versions Affected: >= 5.2.0
Not affected: < 5.2.0
Fixed Versions: 7.0.2.3, 6.1.4.7, 6.0.4.7, 5.2.6.3
Impact
------
There is a possible code injection vulnerability in the Active Storage module
of Rails. This vulnerability impacts applications that use Active Storage
with the image_processing processing in addition to the mini_magick back end
for image_processing.
Vulnerable code will look something similar to this:
```ruby
<%= image_tag blob.variant(params[:t] => params[:v]) %>
```
Where the transformation method or its arguments are untrusted arbitrary
input.
All users running an affected release should either upgrade or use one of the
workarounds immediately.
Workarounds
-----------
To work around this issue, applications should implement a strict allow-list
on accepted transformation methods or arguments. Additionally, a strict image
magick security policy will help mitigate this issue.
https://imagemagick.org/script/security-policy.php
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2022-21831",
"description": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments.",
"id": "GSD-2022-21831",
"references": [
"https://www.suse.com/security/cve/CVE-2022-21831.html",
"https://www.debian.org/security/2023/dsa-5372"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"affected": [
{
"package": {
"ecosystem": "RubyGems",
"name": "activestorage",
"purl": "pkg:gem/activestorage"
}
}
],
"aliases": [
"CVE-2022-21831",
"GHSA-w749-p3v6-hccq"
],
"details": "There is a possible code injection vulnerability in the Active Storage module\nof Rails. This vulnerability has been assigned the CVE identifier\nCVE-2022-21831.\n\nVersions Affected: \u003e= 5.2.0\nNot affected: \u003c 5.2.0\nFixed Versions: 7.0.2.3, 6.1.4.7, 6.0.4.7, 5.2.6.3\n\nImpact\n------\nThere is a possible code injection vulnerability in the Active Storage module\nof Rails. This vulnerability impacts applications that use Active Storage\nwith the image_processing processing in addition to the mini_magick back end\nfor image_processing.\n\nVulnerable code will look something similar to this:\n\n```ruby\n\u003c%= image_tag blob.variant(params[:t] =\u003e params[:v]) %\u003e\n```\n\nWhere the transformation method or its arguments are untrusted arbitrary\ninput.\n\nAll users running an affected release should either upgrade or use one of the\nworkarounds immediately.\n\nWorkarounds\n-----------\nTo work around this issue, applications should implement a strict allow-list\non accepted transformation methods or arguments. Additionally, a strict image\nmagick security policy will help mitigate this issue.\n\n https://imagemagick.org/script/security-policy.php\n",
"id": "GSD-2022-21831",
"modified": "2022-03-08T00:00:00.000Z",
"published": "2022-03-08T00:00:00.000Z",
"references": [
{
"type": "WEB",
"url": "https://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": 9.8,
"type": "CVSS_V3"
}
],
"summary": "Possible code injection vulnerability in Rails / Active Storage"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "support@hackerone.com",
"ID": "CVE-2022-21831",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "https://github.com/rails/rails",
"version": {
"version_data": [
{
"version_value": "7.0.2.3, 6.1.4.7, 6.0.4.7, 5.2.6.3"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Code Injection (CWE-94)"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/advisories/GHSA-w749-p3v6-hccq",
"refsource": "MISC",
"url": "https://github.com/advisories/GHSA-w749-p3v6-hccq"
},
{
"name": "[debian-lts-announce] 20220903 [SECURITY] [DLA 3093-1] rails security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20221118-0001/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20221118-0001/"
},
{
"name": "DSA-5372",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2023/dsa-5372"
}
]
}
},
"github.com/rubysec/ruby-advisory-db": {
"cve": "2022-21831",
"cvss_v3": 9.8,
"date": "2022-03-08",
"description": "There is a possible code injection vulnerability in the Active Storage module\nof Rails. This vulnerability has been assigned the CVE identifier\nCVE-2022-21831.\n\nVersions Affected: \u003e= 5.2.0\nNot affected: \u003c 5.2.0\nFixed Versions: 7.0.2.3, 6.1.4.7, 6.0.4.7, 5.2.6.3\n\nImpact\n------\nThere is a possible code injection vulnerability in the Active Storage module\nof Rails. This vulnerability impacts applications that use Active Storage\nwith the image_processing processing in addition to the mini_magick back end\nfor image_processing.\n\nVulnerable code will look something similar to this:\n\n```ruby\n\u003c%= image_tag blob.variant(params[:t] =\u003e params[:v]) %\u003e\n```\n\nWhere the transformation method or its arguments are untrusted arbitrary\ninput.\n\nAll users running an affected release should either upgrade or use one of the\nworkarounds immediately.\n\nWorkarounds\n-----------\nTo work around this issue, applications should implement a strict allow-list\non accepted transformation methods or arguments. Additionally, a strict image\nmagick security policy will help mitigate this issue.\n\n https://imagemagick.org/script/security-policy.php\n",
"framework": "rails",
"gem": "activestorage",
"ghsa": "w749-p3v6-hccq",
"patched_versions": [
"~\u003e 5.2.6, \u003e= 5.2.6.3",
"~\u003e 6.0.4, \u003e= 6.0.4.7",
"~\u003e 6.1.4, \u003e= 6.1.4.7",
"\u003e= 7.0.2.3"
],
"title": "Possible code injection vulnerability in Rails / Active Storage",
"unaffected_versions": [
"\u003c 5.2.0"
],
"url": "https://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI"
},
"gitlab.com": {
"advisories": [
{
"affected_range": "\u003e=5.2.0 \u003c5.2.6.3||\u003e=6.0.0 \u003c6.0.4.7||\u003e=6.1.0 \u003c6.1.4.7||\u003e=7.0.0 \u003c7.0.2.3",
"affected_versions": "All versions starting from 5.2.0 before 5.2.6.3, all versions starting from 6.0.0 before 6.0.4.7, all versions starting from 6.1.0 before 6.1.4.7, all versions starting from 7.0.0 before 7.0.2.3",
"cvss_v2": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"cwe_ids": [
"CWE-1035",
"CWE-937",
"CWE-94"
],
"date": "2023-03-14",
"description": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments.",
"fixed_versions": [
"5.2.6.3",
"6.0.4.7",
"6.1.4.7",
"7.0.2.3"
],
"identifier": "CVE-2022-21831",
"identifiers": [
"CVE-2022-21831",
"GHSA-w749-p3v6-hccq",
"GMS-2022-301"
],
"not_impacted": "All versions before 5.2.0, all versions starting from 5.2.6.3 before 6.0.0, all versions starting from 6.0.4.7 before 6.1.0, all versions starting from 6.1.4.7 before 7.0.0, all versions starting from 7.0.2.3",
"package_slug": "gem/activestorage",
"pubdate": "2022-05-26",
"solution": "Upgrade to versions 5.2.6.3, 6.0.4.7, 6.1.4.7, 7.0.2.3 or above.",
"title": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2022-21831",
"https://github.com/advisories/GHSA-w749-p3v6-hccq",
"https://github.com/rails/rails/commit/0a72f7d670e9aa77a0bb8584cb1411ddabb7546e",
"https://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI",
"https://rubysec.com/advisories/CVE-2022-21831/"
],
"uuid": "b705c97b-1146-4ab0-930d-6607cda20480"
},
{
"affected_range": "\u003c0",
"affected_versions": "All versions starting from 5.2.0 up to 5.2.6.2, all versions starting from 6.0.0 up to 6.0.4.6, all versions starting from 6.1.0 up to 6.1.4.6, all versions starting from 7.0.0 up to 7.0.2.2",
"cwe_ids": [
"CWE-1035",
"CWE-937"
],
"date": "2022-03-08",
"description": "The Active Storage module of Rails starting with version 5.2.0 are possibly vulnerable to code injection. This issue was patched in versions 5.2.6.2, 6.0.4.7, 6.1.4.7, and 7.0.2.3. To work around this issue, applications should implement a strict allow-list on accepted transformation methods or arguments. Additionally, a strict ImageMagick security policy will help mitigate this issue.",
"fixed_versions": [
"5.2.6.3",
"6.0.4.7",
"6.1.4.7",
"7.0.2.3"
],
"identifier": "GMS-2022-301",
"identifiers": [
"GHSA-w749-p3v6-hccq",
"GMS-2022-301",
"CVE-2022-21831"
],
"not_impacted": "All versions before 5.2.0, all versions after 5.2.6.2 before 6.0.0, all versions after 6.0.4.6 before 6.1.0, all versions after 6.1.4.6 before 7.0.0, all versions after 7.0.2.2",
"package_slug": "gem/activestorage",
"pubdate": "2022-03-08",
"solution": "Upgrade to versions 5.2.6.3, 6.0.4.7, 6.1.4.7, 7.0.2.3 or above.",
"title": "Duplicate of ./gem/activestorage/CVE-2022-21831.yml",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2022-21831",
"https://github.com/rails/rails/commit/0a72f7d670e9aa77a0bb8584cb1411ddabb7546e",
"https://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI",
"https://rubysec.com/advisories/CVE-2022-21831/",
"https://github.com/advisories/GHSA-w749-p3v6-hccq"
],
"uuid": "67a40378-7cd2-4bdd-8870-6c33d01b244c"
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*",
"cpe_name": [],
"versionEndExcluding": "7.0.2.3",
"versionStartIncluding": "7.0.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*",
"cpe_name": [],
"versionEndExcluding": "6.1.4.7",
"versionStartIncluding": "6.1.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*",
"cpe_name": [],
"versionEndExcluding": "6.0.4.7",
"versionStartIncluding": "6.0.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*",
"cpe_name": [],
"versionEndExcluding": "5.2.6.3",
"versionStartIncluding": "5.2.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve-assignments@hackerone.com",
"ID": "CVE-2022-21831"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-94"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/advisories/GHSA-w749-p3v6-hccq",
"refsource": "MISC",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/advisories/GHSA-w749-p3v6-hccq"
},
{
"name": "[debian-lts-announce] 20220903 [SECURITY] [DLA 3093-1] rails security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
},
{
"name": "https://security.netapp.com/advisory/ntap-20221118-0001/",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20221118-0001/"
},
{
"name": "DSA-5372",
"refsource": "DEBIAN",
"tags": [],
"url": "https://www.debian.org/security/2023/dsa-5372"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 6.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
},
"lastModifiedDate": "2023-03-14T08:15Z",
"publishedDate": "2022-05-26T17:15Z"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…