CVE-2022-21831 in Active Storageinformation

Résumé (Anglaise)

A code injection vulnerability exists in the Active Storage >= v5.2.0 that could allow an attacker to execute code via image_processing arguments.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Réserver

10/12/2021

Divulgation

26/05/2022

Statut

Confirmé

Entrées

VulDB provides additional information and datapoints for this CVE:

IDVulnérabilitéCWEExpConCVE
200814Active Storage élévation de privilèges94Non définiNon définiCVE-2022-21831

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

Sources

PrécédentAperçuSuivant

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!