cvelistv5 - cve-2022-21831

CVE-2022-21831 (GCVE-0-2022-21831)

Vulnerability from cvelistv5 – Published: 2022-05-26 00:00 – Updated: 2024-08-03 02:53

Summary

A code injection vulnerability exists in the Active Storage >= v5.2.0 that could allow an attacker to execute code via image_processing arguments.

Severity ?

No CVSS data available.

CWE

CWE-94 - Code Injection (CWE-94)

Assigner

hackerone

References

URL

Tags

	https://github.com/advisories/GHSA-w749-p3v6-hccq
	https://lists.debian.org/debian-lts-announce/2022…	mailing-list
	https://security.netapp.com/advisory/ntap-2022111…
	https://www.debian.org/security/2023/dsa-5372	vendor-advisory

Impacted products

	Vendor	Product	Version
	n/a	https://github.com/rails/rails	Affected: 7.0.2.3, 6.1.4.7, 6.0.4.7, 5.2.6.3

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T02:53:36.300Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/advisories/GHSA-w749-p3v6-hccq"
          },
          {
            "name": "[debian-lts-announce] 20220903 [SECURITY] [DLA 3093-1] rails security update",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20221118-0001/"
          },
          {
            "name": "DSA-5372",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2023/dsa-5372"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "https://github.com/rails/rails",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "7.0.2.3, 6.1.4.7, 6.0.4.7, 5.2.6.3"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-94",
              "description": "Code Injection (CWE-94)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-03-14T00:00:00",
        "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "shortName": "hackerone"
      },
      "references": [
        {
          "url": "https://github.com/advisories/GHSA-w749-p3v6-hccq"
        },
        {
          "name": "[debian-lts-announce] 20220903 [SECURITY] [DLA 3093-1] rails security update",
          "tags": [
            "mailing-list"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
        },
        {
          "url": "https://security.netapp.com/advisory/ntap-20221118-0001/"
        },
        {
          "name": "DSA-5372",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.debian.org/security/2023/dsa-5372"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
    "assignerShortName": "hackerone",
    "cveId": "CVE-2022-21831",
    "datePublished": "2022-05-26T00:00:00",
    "dateReserved": "2021-12-10T00:00:00",
    "dateUpdated": "2024-08-03T02:53:36.300Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*\", \"versionStartIncluding\": \"5.2.0\", \"versionEndExcluding\": \"5.2.6.3\", \"matchCriteriaId\": \"D24017C1-76C5-47FE-8D2D-6DC06276275F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*\", \"versionStartIncluding\": \"6.0.0\", \"versionEndExcluding\": \"6.0.4.7\", \"matchCriteriaId\": \"E453F0F6-D607-4FCE-B407-9461546197AD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*\", \"versionStartIncluding\": \"6.1.0\", \"versionEndExcluding\": \"6.1.4.7\", \"matchCriteriaId\": \"D8D86489-28E0-444A-9A93-19D87079F54B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*\", \"versionStartIncluding\": \"7.0.0\", \"versionEndExcluding\": \"7.0.2.3\", \"matchCriteriaId\": \"CD5A13EC-AC72-4FD2-9B2B-3E57628545C2\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments.\"}, {\"lang\": \"es\", \"value\": \"Se presenta una vulnerabilidad de inyecci\\u00f3n de c\\u00f3digo en Active Storage versiones posteriores a v5.2.0 incluy\\u00e9ndola, que podr\\u00eda permitir a un atacante ejecutar c\\u00f3digo por medio de argumentos image_processing\"}]",
      "id": "CVE-2022-21831",
      "lastModified": "2024-11-21T06:45:31.367",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 9.8, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:P/I:P/A:P\", \"baseScore\": 6.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2022-05-26T17:15:09.017",
      "references": "[{\"url\": \"https://github.com/advisories/GHSA-w749-p3v6-hccq\", \"source\": \"support@hackerone.com\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html\", \"source\": \"support@hackerone.com\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20221118-0001/\", \"source\": \"support@hackerone.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5372\", \"source\": \"support@hackerone.com\"}, {\"url\": \"https://github.com/advisories/GHSA-w749-p3v6-hccq\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20221118-0001/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5372\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "support@hackerone.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"support@hackerone.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-94\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-94\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2022-21831\",\"sourceIdentifier\":\"support@hackerone.com\",\"published\":\"2022-05-26T17:15:09.017\",\"lastModified\":\"2024-11-21T06:45:31.367\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments.\"},{\"lang\":\"es\",\"value\":\"Se presenta una vulnerabilidad de inyecci\u00f3n de c\u00f3digo en Active Storage versiones posteriores a v5.2.0 incluy\u00e9ndola, que podr\u00eda permitir a un atacante ejecutar c\u00f3digo por medio de argumentos image_processing\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"support@hackerone.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*\",\"versionStartIncluding\":\"5.2.0\",\"versionEndExcluding\":\"5.2.6.3\",\"matchCriteriaId\":\"D24017C1-76C5-47FE-8D2D-6DC06276275F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*\",\"versionStartIncluding\":\"6.0.0\",\"versionEndExcluding\":\"6.0.4.7\",\"matchCriteriaId\":\"E453F0F6-D607-4FCE-B407-9461546197AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*\",\"versionStartIncluding\":\"6.1.0\",\"versionEndExcluding\":\"6.1.4.7\",\"matchCriteriaId\":\"D8D86489-28E0-444A-9A93-19D87079F54B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*\",\"versionStartIncluding\":\"7.0.0\",\"versionEndExcluding\":\"7.0.2.3\",\"matchCriteriaId\":\"CD5A13EC-AC72-4FD2-9B2B-3E57628545C2\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}]}]}],\"references\":[{\"url\":\"https://github.com/advisories/GHSA-w749-p3v6-hccq\",\"source\":\"support@hackerone.com\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html\",\"source\":\"support@hackerone.com\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20221118-0001/\",\"source\":\"support@hackerone.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5372\",\"source\":\"support@hackerone.com\"},{\"url\":\"https://github.com/advisories/GHSA-w749-p3v6-hccq\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20221118-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5372\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

OPENSUSE-SU-2024:12880-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1 on GA media

Notes

Title of the patch

ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1 on GA media

Description of the patch

These are all security issues fixed in the ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2024-12880

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-12880",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_12880-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21831 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21831/"
      }
    ],
    "title": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:12880-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64",
                "product": {
                  "name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64",
                  "product_id": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le",
                "product": {
                  "name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le",
                  "product_id": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x",
                "product": {
                  "name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x",
                  "product_id": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64",
                "product": {
                  "name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64",
                  "product_id": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64"
        },
        "product_reference": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le"
        },
        "product_reference": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x"
        },
        "product_reference": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64"
        },
        "product_reference": "ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-21831",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21831"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64",
          "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le",
          "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x",
          "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21831",
          "url": "https://www.suse.com/security/cve/CVE-2022-21831"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197252 for CVE-2022-21831",
          "url": "https://bugzilla.suse.com/1197252"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64",
            "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le",
            "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x",
            "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.aarch64",
            "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.ppc64le",
            "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.s390x",
            "openSUSE Tumbleweed:ruby3.2-rubygem-activestorage-7.0-7.0.4.3-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2022-21831"
    }
  ]
}

OPENSUSE-SU-2025:15113-1

Vulnerability from csaf_opensuse - Published: 2025-05-17 00:00 - Updated: 2025-05-17 00:00

Summary

ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3 on GA media

Notes

Title of the patch

ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3 on GA media

Description of the patch

These are all security issues fixed in the ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2025-15113

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2025-15113",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15113-1.json"
      },
      {
        "category": "self",
        "summary": "URL for openSUSE-SU-2025:15113-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/46EQRIAH3FLDMDVYDHYXRLAPYFUK6NA6/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for openSUSE-SU-2025:15113-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/46EQRIAH3FLDMDVYDHYXRLAPYFUK6NA6/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21831 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21831/"
      }
    ],
    "title": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3 on GA media",
    "tracking": {
      "current_release_date": "2025-05-17T00:00:00Z",
      "generator": {
        "date": "2025-05-17T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2025:15113-1",
      "initial_release_date": "2025-05-17T00:00:00Z",
      "revision_history": [
        {
          "date": "2025-05-17T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64",
                "product": {
                  "name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64",
                  "product_id": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le",
                "product": {
                  "name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le",
                  "product_id": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x",
                "product": {
                  "name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x",
                  "product_id": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64",
                "product": {
                  "name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64",
                  "product_id": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64"
        },
        "product_reference": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le"
        },
        "product_reference": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x"
        },
        "product_reference": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64"
        },
        "product_reference": "ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-21831",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21831"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64",
          "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le",
          "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x",
          "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21831",
          "url": "https://www.suse.com/security/cve/CVE-2022-21831"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197252 for CVE-2022-21831",
          "url": "https://bugzilla.suse.com/1197252"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64",
            "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le",
            "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x",
            "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.aarch64",
            "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.ppc64le",
            "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.s390x",
            "openSUSE Tumbleweed:ruby3.4-rubygem-activestorage-7.0-7.0.8.6-1.3.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-05-17T00:00:00Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2022-21831"
    }
  ]
}

OPENSUSE-SU-2024:14070-1

Vulnerability from csaf_opensuse - Published: 2024-06-24 00:00 - Updated: 2024-06-24 00:00

Summary

ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1 on GA media

Notes

Title of the patch

ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1 on GA media

Description of the patch

These are all security issues fixed in the ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2024-14070

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-14070",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_14070-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21831 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21831/"
      }
    ],
    "title": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-24T00:00:00Z",
      "generator": {
        "date": "2024-06-24T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:14070-1",
      "initial_release_date": "2024-06-24T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-24T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64",
                "product": {
                  "name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64",
                  "product_id": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le",
                "product": {
                  "name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le",
                  "product_id": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x",
                "product": {
                  "name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x",
                  "product_id": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64",
                "product": {
                  "name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64",
                  "product_id": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64"
        },
        "product_reference": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le"
        },
        "product_reference": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x"
        },
        "product_reference": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64"
        },
        "product_reference": "ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-21831",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21831"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64",
          "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le",
          "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x",
          "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21831",
          "url": "https://www.suse.com/security/cve/CVE-2022-21831"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197252 for CVE-2022-21831",
          "url": "https://bugzilla.suse.com/1197252"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64",
            "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le",
            "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x",
            "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.aarch64",
            "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.ppc64le",
            "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.s390x",
            "openSUSE Tumbleweed:ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-24T00:00:00Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2022-21831"
    }
  ]
}

OPENSUSE-SU-2024:11903-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1 on GA media

Notes

Title of the patch

ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1 on GA media

Description of the patch

These are all security issues fixed in the ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2024-11903

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-11903",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11903-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-21831 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-21831/"
      }
    ],
    "title": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:11903-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64",
                "product": {
                  "name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64",
                  "product_id": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le",
                "product": {
                  "name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le",
                  "product_id": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x",
                "product": {
                  "name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x",
                  "product_id": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64",
                "product": {
                  "name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64",
                  "product_id": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64"
        },
        "product_reference": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le"
        },
        "product_reference": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x"
        },
        "product_reference": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64"
        },
        "product_reference": "ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-21831",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-21831"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64",
          "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le",
          "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x",
          "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-21831",
          "url": "https://www.suse.com/security/cve/CVE-2022-21831"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197252 for CVE-2022-21831",
          "url": "https://bugzilla.suse.com/1197252"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64",
            "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le",
            "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x",
            "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.aarch64",
            "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.ppc64le",
            "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.s390x",
            "openSUSE Tumbleweed:ruby3.1-rubygem-activestorage-7.0-7.0.2.3-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "critical"
        }
      ],
      "title": "CVE-2022-21831"
    }
  ]
}

GSD-2022-21831

Vulnerability from gsd - Updated: 2022-03-08 00:00

Details

There is a possible code injection vulnerability in the Active Storage module of Rails. This vulnerability has been assigned the CVE identifier CVE-2022-21831. Versions Affected: >= 5.2.0 Not affected: < 5.2.0 Fixed Versions: 7.0.2.3, 6.1.4.7, 6.0.4.7, 5.2.6.3 Impact ------ There is a possible code injection vulnerability in the Active Storage module of Rails. This vulnerability impacts applications that use Active Storage with the image_processing processing in addition to the mini_magick back end for image_processing. Vulnerable code will look something similar to this: ```ruby <%= image_tag blob.variant(params[:t] => params[:v]) %> ``` Where the transformation method or its arguments are untrusted arbitrary input. All users running an affected release should either upgrade or use one of the workarounds immediately. Workarounds ----------- To work around this issue, applications should implement a strict allow-list on accepted transformation methods or arguments. Additionally, a strict image magick security policy will help mitigate this issue. https://imagemagick.org/script/security-policy.php

Aliases

CVE-2022-21831

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2022-21831",
    "description": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments.",
    "id": "GSD-2022-21831",
    "references": [
      "https://www.suse.com/security/cve/CVE-2022-21831.html",
      "https://www.debian.org/security/2023/dsa-5372"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "affected": [
        {
          "package": {
            "ecosystem": "RubyGems",
            "name": "activestorage",
            "purl": "pkg:gem/activestorage"
          }
        }
      ],
      "aliases": [
        "CVE-2022-21831",
        "GHSA-w749-p3v6-hccq"
      ],
      "details": "There is a possible code injection vulnerability in the Active Storage module\nof Rails. This vulnerability has been assigned the CVE identifier\nCVE-2022-21831.\n\nVersions Affected:  \u003e= 5.2.0\nNot affected:       \u003c 5.2.0\nFixed Versions:     7.0.2.3, 6.1.4.7, 6.0.4.7, 5.2.6.3\n\nImpact\n------\nThere is a possible code injection vulnerability in the Active Storage module\nof Rails.  This vulnerability impacts applications that use Active Storage\nwith the image_processing processing in addition to the mini_magick back end\nfor image_processing.\n\nVulnerable code will look something similar to this:\n\n```ruby\n\u003c%= image_tag blob.variant(params[:t] =\u003e params[:v]) %\u003e\n```\n\nWhere the transformation method or its arguments are untrusted arbitrary\ninput.\n\nAll users running an affected release should either upgrade or use one of the\nworkarounds immediately.\n\nWorkarounds\n-----------\nTo work around this issue, applications should implement a strict allow-list\non accepted transformation methods or arguments.  Additionally, a strict image\nmagick security policy will help mitigate this issue.\n\n  https://imagemagick.org/script/security-policy.php\n",
      "id": "GSD-2022-21831",
      "modified": "2022-03-08T00:00:00.000Z",
      "published": "2022-03-08T00:00:00.000Z",
      "references": [
        {
          "type": "WEB",
          "url": "https://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI"
        }
      ],
      "schema_version": "1.4.0",
      "severity": [
        {
          "score": 9.8,
          "type": "CVSS_V3"
        }
      ],
      "summary": "Possible code injection vulnerability in Rails / Active Storage"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "support@hackerone.com",
        "ID": "CVE-2022-21831",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "https://github.com/rails/rails",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "7.0.2.3, 6.1.4.7, 6.0.4.7, 5.2.6.3"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Code Injection (CWE-94)"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://github.com/advisories/GHSA-w749-p3v6-hccq",
            "refsource": "MISC",
            "url": "https://github.com/advisories/GHSA-w749-p3v6-hccq"
          },
          {
            "name": "[debian-lts-announce] 20220903 [SECURITY] [DLA 3093-1] rails security update",
            "refsource": "MLIST",
            "url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
          },
          {
            "name": "https://security.netapp.com/advisory/ntap-20221118-0001/",
            "refsource": "CONFIRM",
            "url": "https://security.netapp.com/advisory/ntap-20221118-0001/"
          },
          {
            "name": "DSA-5372",
            "refsource": "DEBIAN",
            "url": "https://www.debian.org/security/2023/dsa-5372"
          }
        ]
      }
    },
    "github.com/rubysec/ruby-advisory-db": {
      "cve": "2022-21831",
      "cvss_v3": 9.8,
      "date": "2022-03-08",
      "description": "There is a possible code injection vulnerability in the Active Storage module\nof Rails. This vulnerability has been assigned the CVE identifier\nCVE-2022-21831.\n\nVersions Affected:  \u003e= 5.2.0\nNot affected:       \u003c 5.2.0\nFixed Versions:     7.0.2.3, 6.1.4.7, 6.0.4.7, 5.2.6.3\n\nImpact\n------\nThere is a possible code injection vulnerability in the Active Storage module\nof Rails.  This vulnerability impacts applications that use Active Storage\nwith the image_processing processing in addition to the mini_magick back end\nfor image_processing.\n\nVulnerable code will look something similar to this:\n\n```ruby\n\u003c%= image_tag blob.variant(params[:t] =\u003e params[:v]) %\u003e\n```\n\nWhere the transformation method or its arguments are untrusted arbitrary\ninput.\n\nAll users running an affected release should either upgrade or use one of the\nworkarounds immediately.\n\nWorkarounds\n-----------\nTo work around this issue, applications should implement a strict allow-list\non accepted transformation methods or arguments.  Additionally, a strict image\nmagick security policy will help mitigate this issue.\n\n  https://imagemagick.org/script/security-policy.php\n",
      "framework": "rails",
      "gem": "activestorage",
      "ghsa": "w749-p3v6-hccq",
      "patched_versions": [
        "~\u003e 5.2.6, \u003e= 5.2.6.3",
        "~\u003e 6.0.4, \u003e= 6.0.4.7",
        "~\u003e 6.1.4, \u003e= 6.1.4.7",
        "\u003e= 7.0.2.3"
      ],
      "title": "Possible code injection vulnerability in Rails / Active Storage",
      "unaffected_versions": [
        "\u003c 5.2.0"
      ],
      "url": "https://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI"
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "\u003e=5.2.0 \u003c5.2.6.3||\u003e=6.0.0 \u003c6.0.4.7||\u003e=6.1.0 \u003c6.1.4.7||\u003e=7.0.0 \u003c7.0.2.3",
          "affected_versions": "All versions starting from 5.2.0 before 5.2.6.3, all versions starting from 6.0.0 before 6.0.4.7, all versions starting from 6.1.0 before 6.1.4.7, all versions starting from 7.0.0 before 7.0.2.3",
          "cvss_v2": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "cwe_ids": [
            "CWE-1035",
            "CWE-937",
            "CWE-94"
          ],
          "date": "2023-03-14",
          "description": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments.",
          "fixed_versions": [
            "5.2.6.3",
            "6.0.4.7",
            "6.1.4.7",
            "7.0.2.3"
          ],
          "identifier": "CVE-2022-21831",
          "identifiers": [
            "CVE-2022-21831",
            "GHSA-w749-p3v6-hccq",
            "GMS-2022-301"
          ],
          "not_impacted": "All versions before 5.2.0, all versions starting from 5.2.6.3 before 6.0.0, all versions starting from 6.0.4.7 before 6.1.0, all versions starting from 6.1.4.7 before 7.0.0, all versions starting from 7.0.2.3",
          "package_slug": "gem/activestorage",
          "pubdate": "2022-05-26",
          "solution": "Upgrade to versions 5.2.6.3, 6.0.4.7, 6.1.4.7, 7.0.2.3 or above.",
          "title": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
          "urls": [
            "https://nvd.nist.gov/vuln/detail/CVE-2022-21831",
            "https://github.com/advisories/GHSA-w749-p3v6-hccq",
            "https://github.com/rails/rails/commit/0a72f7d670e9aa77a0bb8584cb1411ddabb7546e",
            "https://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI",
            "https://rubysec.com/advisories/CVE-2022-21831/"
          ],
          "uuid": "b705c97b-1146-4ab0-930d-6607cda20480"
        },
        {
          "affected_range": "\u003c0",
          "affected_versions": "All versions starting from 5.2.0 up to 5.2.6.2, all versions starting from 6.0.0 up to 6.0.4.6, all versions starting from 6.1.0 up to 6.1.4.6, all versions starting from 7.0.0 up to 7.0.2.2",
          "cwe_ids": [
            "CWE-1035",
            "CWE-937"
          ],
          "date": "2022-03-08",
          "description": "The Active Storage module of Rails starting with version 5.2.0 are possibly vulnerable to code injection. This issue was patched in versions 5.2.6.2, 6.0.4.7, 6.1.4.7, and 7.0.2.3. To work around this issue, applications should implement a strict allow-list on accepted transformation methods or arguments. Additionally, a strict ImageMagick security policy will help mitigate this issue.",
          "fixed_versions": [
            "5.2.6.3",
            "6.0.4.7",
            "6.1.4.7",
            "7.0.2.3"
          ],
          "identifier": "GMS-2022-301",
          "identifiers": [
            "GHSA-w749-p3v6-hccq",
            "GMS-2022-301",
            "CVE-2022-21831"
          ],
          "not_impacted": "All versions before 5.2.0, all versions after 5.2.6.2 before 6.0.0, all versions after 6.0.4.6 before 6.1.0, all versions after 6.1.4.6 before 7.0.0, all versions after 7.0.2.2",
          "package_slug": "gem/activestorage",
          "pubdate": "2022-03-08",
          "solution": "Upgrade to versions 5.2.6.3, 6.0.4.7, 6.1.4.7, 7.0.2.3 or above.",
          "title": "Duplicate of ./gem/activestorage/CVE-2022-21831.yml",
          "urls": [
            "https://nvd.nist.gov/vuln/detail/CVE-2022-21831",
            "https://github.com/rails/rails/commit/0a72f7d670e9aa77a0bb8584cb1411ddabb7546e",
            "https://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI",
            "https://rubysec.com/advisories/CVE-2022-21831/",
            "https://github.com/advisories/GHSA-w749-p3v6-hccq"
          ],
          "uuid": "67a40378-7cd2-4bdd-8870-6c33d01b244c"
        }
      ]
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*",
                "cpe_name": [],
                "versionEndExcluding": "7.0.2.3",
                "versionStartIncluding": "7.0.0",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*",
                "cpe_name": [],
                "versionEndExcluding": "6.1.4.7",
                "versionStartIncluding": "6.1.0",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*",
                "cpe_name": [],
                "versionEndExcluding": "6.0.4.7",
                "versionStartIncluding": "6.0.0",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*",
                "cpe_name": [],
                "versionEndExcluding": "5.2.6.3",
                "versionStartIncluding": "5.2.0",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve-assignments@hackerone.com",
          "ID": "CVE-2022-21831"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-94"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/advisories/GHSA-w749-p3v6-hccq",
              "refsource": "MISC",
              "tags": [
                "Patch",
                "Third Party Advisory"
              ],
              "url": "https://github.com/advisories/GHSA-w749-p3v6-hccq"
            },
            {
              "name": "[debian-lts-announce] 20220903 [SECURITY] [DLA 3093-1] rails security update",
              "refsource": "MLIST",
              "tags": [
                "Mailing List",
                "Third Party Advisory"
              ],
              "url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20221118-0001/",
              "refsource": "CONFIRM",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://security.netapp.com/advisory/ntap-20221118-0001/"
            },
            {
              "name": "DSA-5372",
              "refsource": "DEBIAN",
              "tags": [],
              "url": "https://www.debian.org/security/2023/dsa-5372"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2023-03-14T08:15Z",
      "publishedDate": "2022-05-26T17:15Z"
    }
  }
}

FKIE_CVE-2022-21831

Vulnerability from fkie_nvd - Published: 2022-05-26 17:15 - Updated: 2024-11-21 06:45

Severity ?

9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

A code injection vulnerability exists in the Active Storage >= v5.2.0 that could allow an attacker to execute code via image_processing arguments.

References

URL	Tags
support@hackerone.com	https://github.com/advisories/GHSA-w749-p3v6-hccq	Patch, Third Party Advisory
support@hackerone.com	https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html	Mailing List, Third Party Advisory
support@hackerone.com	https://security.netapp.com/advisory/ntap-20221118-0001/	Third Party Advisory
support@hackerone.com	https://www.debian.org/security/2023/dsa-5372
af854a3a-2127-422b-91ae-364da2661108	https://github.com/advisories/GHSA-w749-p3v6-hccq	Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://security.netapp.com/advisory/ntap-20221118-0001/	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.debian.org/security/2023/dsa-5372

Impacted products

Vendor	Product	Version
rubyonrails	active_storage	*
rubyonrails	active_storage	*
rubyonrails	active_storage	*
rubyonrails	active_storage	*
debian	debian_linux	10.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*",
              "matchCriteriaId": "D24017C1-76C5-47FE-8D2D-6DC06276275F",
              "versionEndExcluding": "5.2.6.3",
              "versionStartIncluding": "5.2.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*",
              "matchCriteriaId": "E453F0F6-D607-4FCE-B407-9461546197AD",
              "versionEndExcluding": "6.0.4.7",
              "versionStartIncluding": "6.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*",
              "matchCriteriaId": "D8D86489-28E0-444A-9A93-19D87079F54B",
              "versionEndExcluding": "6.1.4.7",
              "versionStartIncluding": "6.1.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:rubyonrails:active_storage:*:*:*:*:*:ruby:*:*",
              "matchCriteriaId": "CD5A13EC-AC72-4FD2-9B2B-3E57628545C2",
              "versionEndExcluding": "7.0.2.3",
              "versionStartIncluding": "7.0.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A code injection vulnerability exists in the Active Storage \u003e= v5.2.0 that could allow an attacker to execute code via image_processing arguments."
    },
    {
      "lang": "es",
      "value": "Se presenta una vulnerabilidad de inyecci\u00f3n de c\u00f3digo en Active Storage versiones posteriores a v5.2.0 incluy\u00e9ndola, que podr\u00eda permitir a un atacante ejecutar c\u00f3digo por medio de argumentos image_processing"
    }
  ],
  "id": "CVE-2022-21831",
  "lastModified": "2024-11-21T06:45:31.367",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2022-05-26T17:15:09.017",
  "references": [
    {
      "source": "support@hackerone.com",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/advisories/GHSA-w749-p3v6-hccq"
    },
    {
      "source": "support@hackerone.com",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
    },
    {
      "source": "support@hackerone.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://security.netapp.com/advisory/ntap-20221118-0001/"
    },
    {
      "source": "support@hackerone.com",
      "url": "https://www.debian.org/security/2023/dsa-5372"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://github.com/advisories/GHSA-w749-p3v6-hccq"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://security.netapp.com/advisory/ntap-20221118-0001/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.debian.org/security/2023/dsa-5372"
    }
  ],
  "sourceIdentifier": "support@hackerone.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-94"
        }
      ],
      "source": "support@hackerone.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-94"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTFR-2022-AVI-220

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité a été découverte dans Ruby on Rails. Elle permet à un attaquant de provoquer une exécution de code arbitraire à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs et des mesures de contournement (cf. section Documentation).

Contournement provisoire

L'éditeur indique que les applications doivent implémenter une liste d'autorisation stricte sur les méthodes ou arguments de transformation acceptés. Une politique de sécurité stricte configurée sur image magick permet contourner la vulnérabilité.

Ruby On Rails versions 5.2.x antérieures à 5.2.6.3
Ruby On Rails versions 6.0.x antérieures à 6.0.4.7
Ruby On Rails versions 6.1.x antérieures à 6.1.4.7
Ruby On Rails versions 7.0.x antérieures à 7.0.2.3

Les versions antérieures à 5.2.0 ne sont pas affectées par la vulnérabilité.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Ruby on Rails n-p-W1yxatI du 08 mars 2022	None	vendor-advisory
Bulletin de sécurité Rubysec CVE-2022-21831 du 08 mars 2022	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cul\u003e \u003cli\u003eRuby On Rails versions 5.2.x ant\u00e9rieures \u00e0 5.2.6.3\u003c/li\u003e \u003cli\u003eRuby On Rails versions 6.0.x ant\u00e9rieures \u00e0 6.0.4.7\u003c/li\u003e \u003cli\u003eRuby On Rails versions 6.1.x ant\u00e9rieures \u00e0 6.1.4.7\u003c/li\u003e \u003cli\u003eRuby On Rails versions 7.0.x ant\u00e9rieures \u00e0 7.0.2.3\u003c/li\u003e \u003c/ul\u003e \u003cp\u003eLes versions ant\u00e9rieures \u00e0 5.2.0 ne sont pas affect\u00e9es par la vuln\u00e9rabilit\u00e9.\u003c/p\u003e ",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs et des mesures de contournement (cf. section Documentation).\n\n## Contournement provisoire\n\nL\u0027\u00e9diteur indique que les applications doivent impl\u00e9menter une liste\nd\u0027autorisation stricte sur les m\u00e9thodes ou arguments de transformation\naccept\u00e9s. Une politique de s\u00e9curit\u00e9 stricte configur\u00e9e sur image magick\npermet contourner la vuln\u00e9rabilit\u00e9.\n",
  "cves": [
    {
      "name": "CVE-2022-21831",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-21831"
    }
  ],
  "links": [],
  "reference": "CERTFR-2022-AVI-220",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2022-03-09T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Ruby on Rails. Elle permet \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Ruby on Rails",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ruby on Rails n-p-W1yxatI du 08 mars 2022",
      "url": "https://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Rubysec CVE-2022-21831 du 08 mars 2022",
      "url": "https://rubysec.com/advisories/CVE-2022-21831/"
    }
  ]
}

CERTFR-2022-AVI-220

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité a été découverte dans Ruby on Rails. Elle permet à un attaquant de provoquer une exécution de code arbitraire à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs et des mesures de contournement (cf. section Documentation).

Contournement provisoire

Ruby On Rails versions 5.2.x antérieures à 5.2.6.3
Ruby On Rails versions 6.0.x antérieures à 6.0.4.7
Ruby On Rails versions 6.1.x antérieures à 6.1.4.7
Ruby On Rails versions 7.0.x antérieures à 7.0.2.3

Les versions antérieures à 5.2.0 ne sont pas affectées par la vulnérabilité.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Ruby on Rails n-p-W1yxatI du 08 mars 2022	None	vendor-advisory
Bulletin de sécurité Rubysec CVE-2022-21831 du 08 mars 2022	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cul\u003e \u003cli\u003eRuby On Rails versions 5.2.x ant\u00e9rieures \u00e0 5.2.6.3\u003c/li\u003e \u003cli\u003eRuby On Rails versions 6.0.x ant\u00e9rieures \u00e0 6.0.4.7\u003c/li\u003e \u003cli\u003eRuby On Rails versions 6.1.x ant\u00e9rieures \u00e0 6.1.4.7\u003c/li\u003e \u003cli\u003eRuby On Rails versions 7.0.x ant\u00e9rieures \u00e0 7.0.2.3\u003c/li\u003e \u003c/ul\u003e \u003cp\u003eLes versions ant\u00e9rieures \u00e0 5.2.0 ne sont pas affect\u00e9es par la vuln\u00e9rabilit\u00e9.\u003c/p\u003e ",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs et des mesures de contournement (cf. section Documentation).\n\n## Contournement provisoire\n\nL\u0027\u00e9diteur indique que les applications doivent impl\u00e9menter une liste\nd\u0027autorisation stricte sur les m\u00e9thodes ou arguments de transformation\naccept\u00e9s. Une politique de s\u00e9curit\u00e9 stricte configur\u00e9e sur image magick\npermet contourner la vuln\u00e9rabilit\u00e9.\n",
  "cves": [
    {
      "name": "CVE-2022-21831",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-21831"
    }
  ],
  "links": [],
  "reference": "CERTFR-2022-AVI-220",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2022-03-09T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans Ruby on Rails. Elle permet \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans Ruby on Rails",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ruby on Rails n-p-W1yxatI du 08 mars 2022",
      "url": "https://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Rubysec CVE-2022-21831 du 08 mars 2022",
      "url": "https://rubysec.com/advisories/CVE-2022-21831/"
    }
  ]
}

WID-SEC-W-2022-1280

Vulnerability from csaf_certbund - Published: 2022-03-08 23:00 - Updated: 2025-05-18 22:00

Summary

Ruby on Rails: Schwachstelle ermöglicht Codeausführung

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Ruby on Rails ist ein in der Programmiersprache Ruby geschriebenes und quelloffenes Web Application Framework.

Angriff

Ein Angreifer kann eine Schwachstelle in Ruby on Rails ausnutzen, um beliebigen Programmcode auszuführen.

Betroffene Betriebssysteme

- Linux - Sonstiges - UNIX - Windows

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Ruby on Rails ist ein in der Programmiersprache Ruby geschriebenes und quelloffenes Web Application Framework.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann eine Schwachstelle in Ruby on Rails ausnutzen, um beliebigen Programmcode auszuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges\n- UNIX\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2022-1280 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1280.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2022-1280 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1280"
      },
      {
        "category": "external",
        "summary": "Ruby Security Advisory vom 2022-03-08",
        "url": "https://rubyonrails.org/2022/3/8/Rails-7-0-2-3-6-1-4-7-6-0-4-7-and-5-2-6-3-have-been-released"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3093 vom 2022-09-03",
        "url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5372 vom 2023-03-13",
        "url": "https://lists.debian.org/debian-security-announce/2023/msg00061.html"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2025:15113-1 vom 2025-05-18",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/46EQRIAH3FLDMDVYDHYXRLAPYFUK6NA6/"
      }
    ],
    "source_lang": "en-US",
    "title": "Ruby on Rails: Schwachstelle erm\u00f6glicht Codeausf\u00fchrung",
    "tracking": {
      "current_release_date": "2025-05-18T22:00:00.000+00:00",
      "generator": {
        "date": "2025-05-19T08:27:30.725+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2022-1280",
      "initial_release_date": "2022-03-08T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2022-03-08T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2022-09-04T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2023-03-12T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2025-05-18T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von openSUSE aufgenommen"
        }
      ],
      "status": "final",
      "version": "4"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c7.0.2.3",
                "product": {
                  "name": "Open Source Ruby on Rails \u003c7.0.2.3",
                  "product_id": "T022290"
                }
              },
              {
                "category": "product_version",
                "name": "7.0.2.3",
                "product": {
                  "name": "Open Source Ruby on Rails 7.0.2.3",
                  "product_id": "T022290-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:rubyonrails:ruby_on_rails:7.0.2.3"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c6.1.4.7",
                "product": {
                  "name": "Open Source Ruby on Rails \u003c6.1.4.7",
                  "product_id": "T022291"
                }
              },
              {
                "category": "product_version",
                "name": "6.1.4.7",
                "product": {
                  "name": "Open Source Ruby on Rails 6.1.4.7",
                  "product_id": "T022291-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:rubyonrails:ruby_on_rails:6.1.4.7"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c6.0.4.7",
                "product": {
                  "name": "Open Source Ruby on Rails \u003c6.0.4.7",
                  "product_id": "T022292"
                }
              },
              {
                "category": "product_version",
                "name": "6.0.4.7",
                "product": {
                  "name": "Open Source Ruby on Rails 6.0.4.7",
                  "product_id": "T022292-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:rubyonrails:ruby_on_rails:6.0.4.7"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c5.2.6.3",
                "product": {
                  "name": "Open Source Ruby on Rails \u003c5.2.6.3",
                  "product_id": "T022293"
                }
              },
              {
                "category": "product_version",
                "name": "5.2.6.3",
                "product": {
                  "name": "Open Source Ruby on Rails 5.2.6.3",
                  "product_id": "T022293-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:rubyonrails:ruby_on_rails:5.2.6.3"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Ruby on Rails"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE openSUSE",
            "product": {
              "name": "SUSE openSUSE",
              "product_id": "T027843",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:opensuse:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-21831",
      "product_status": {
        "known_affected": [
          "T022290",
          "T022291",
          "T022292",
          "2951",
          "T027843",
          "T022293"
        ]
      },
      "release_date": "2022-03-08T23:00:00.000+00:00",
      "title": "CVE-2022-21831"
    }
  ]
}

GHSA-W749-P3V6-HCCQ

Vulnerability from github – Published: 2022-03-08 21:25 – Updated: 2022-06-21 15:59

Summary

Possible code injection vulnerability in Rails / Active Storage

Details

The Active Storage module of Rails starting with version 5.2.0 is possibly vulnerable to code injection. This issue was patched in versions 5.2.6.3, 6.0.4.7, 6.1.4.7, and 7.0.2.3. To work around this issue, applications should implement a strict allow-list on accepted transformation methods or arguments. Additionally, a strict ImageMagick security policy will help mitigate this issue.

Severity ?

9.8 (Critical)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "database_specific": {
        "last_known_affected_version_range": "\u003c= 5.2.6.2"
      },
      "package": {
        "ecosystem": "RubyGems",
        "name": "activestorage"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "5.2.0"
            },
            {
              "fixed": "5.2.6.3"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "database_specific": {
        "last_known_affected_version_range": "\u003c= 6.0.4.6"
      },
      "package": {
        "ecosystem": "RubyGems",
        "name": "activestorage"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "6.0.0"
            },
            {
              "fixed": "6.0.4.7"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "database_specific": {
        "last_known_affected_version_range": "\u003c= 6.1.4.6"
      },
      "package": {
        "ecosystem": "RubyGems",
        "name": "activestorage"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "6.1.0"
            },
            {
              "fixed": "6.1.4.7"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "database_specific": {
        "last_known_affected_version_range": "\u003c= 7.0.2.2"
      },
      "package": {
        "ecosystem": "RubyGems",
        "name": "activestorage"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "7.0.0"
            },
            {
              "fixed": "7.0.2.3"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2022-21831"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-94"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2022-03-08T21:25:54Z",
    "nvd_published_at": "2022-05-26T17:15:00Z",
    "severity": "CRITICAL"
  },
  "details": "The Active Storage module of Rails starting with version 5.2.0 is possibly vulnerable to code injection. This issue was patched in versions 5.2.6.3, 6.0.4.7, 6.1.4.7, and 7.0.2.3. To work around this issue, applications should implement a strict allow-list on accepted transformation methods or arguments.  Additionally, a strict ImageMagick security policy will help mitigate this issue.",
  "id": "GHSA-w749-p3v6-hccq",
  "modified": "2022-06-21T15:59:23Z",
  "published": "2022-03-08T21:25:54Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-21831"
    },
    {
      "type": "WEB",
      "url": "https://github.com/rails/rails/commit/0a72f7d670e9aa77a0bb8584cb1411ddabb7546e"
    },
    {
      "type": "ADVISORY",
      "url": "https://github.com/advisories/GHSA-w749-p3v6-hccq"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/rails/rails"
    },
    {
      "type": "WEB",
      "url": "https://github.com/rubysec/ruby-advisory-db/blob/master/gems/activestorage/CVE-2022-21831.yml"
    },
    {
      "type": "WEB",
      "url": "https://groups.google.com/g/rubyonrails-security/c/n-p-W1yxatI"
    },
    {
      "type": "WEB",
      "url": "https://lists.debian.org/debian-lts-announce/2022/09/msg00002.html"
    },
    {
      "type": "WEB",
      "url": "https://rubysec.com/advisories/CVE-2022-21831"
    },
    {
      "type": "WEB",
      "url": "https://security.netapp.com/advisory/ntap-20221118-0001"
    },
    {
      "type": "WEB",
      "url": "https://www.debian.org/security/2023/dsa-5372"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ],
  "summary": "Possible code injection vulnerability in Rails / Active Storage"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2022-21831 (GCVE-0-2022-21831)

Solution

Contournement provisoire

Solution

Contournement provisoire

Tags

Sightings

Nomenclature