CVE-2022-21831

Published: May 26, 2022

Modified: Aug 3, 2024

PUBLISHED

A code injection vulnerability exists in the Active Storage >= v5.2.0 that could allow an attacker to execute code via image_processing arguments.

Vendor	Product	Versions
n/a	https://github.com/rails/rails	affected `7.0.2.3, 6.1.4.7, 6.0.4.7, 5.2.6.3`

mailing-list

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.