{
  "threat_severity" : "Critical",
  "public_date" : "2022-07-12T00:00:00Z",
  "bugzilla" : {
    "description" : "activerecord: Possible RCE escalation bug with Serialized Columns in Active Record",
    "id" : "2108997",
    "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=2108997"
  },
  "cvss3" : {
    "cvss3_base_score" : "9.0",
    "cvss3_scoring_vector" : "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
    "status" : "verified"
  },
  "cwe" : "CWE-94",
  "details" : [ "A possible escalation to RCE vulnerability exists when using YAML serialized columns in Active Record < 7.0.3.1, <6.1.6.1, <6.0.5.1 and <5.2.8.1 which could allow an attacker, that can manipulate data in the database (via means like SQL injection), the ability to escalate to an RCE.", "An insecure deserialization flaw was found in Active Record, which uses YAML.unsafe_load to convert the YAML data into Ruby objects. An attacker supplying crafted data to the database can perform remote code execution (RCE), resulting in complete system compromise." ],
  "affected_release" : [ {
    "product_name" : "Red Hat Satellite 6.11 for RHEL 7",
    "release_date" : "2023-03-07T00:00:00Z",
    "advisory" : "RHSA-2023:1151",
    "cpe" : "cpe:/a:redhat:satellite:6.11::el7",
    "package" : "tfm-rubygem-activerecord-0:6.0.6-2.el7sat",
    "impact" : "important"
  }, {
    "product_name" : "Red Hat Satellite 6.11 for RHEL 8",
    "release_date" : "2023-03-07T00:00:00Z",
    "advisory" : "RHSA-2023:1151",
    "cpe" : "cpe:/a:redhat:satellite:6.11::el8",
    "package" : "tfm-rubygem-activerecord-0:6.0.6-2.el8sat",
    "impact" : "important"
  }, {
    "product_name" : "Red Hat Satellite 6.12 for RHEL 8",
    "release_date" : "2023-01-18T00:00:00Z",
    "advisory" : "RHSA-2023:0261",
    "cpe" : "cpe:/a:redhat:satellite:6.12::el8",
    "package" : "tfm-rubygem-activerecord-0:6.0.6-2.el8sat",
    "impact" : "important"
  }, {
    "product_name" : "Red Hat Satellite 6.13 for RHEL 8",
    "release_date" : "2023-05-03T00:00:00Z",
    "advisory" : "RHSA-2023:2097",
    "cpe" : "cpe:/a:redhat:satellite:6.13::el8",
    "package" : "tfm-rubygem-activerecord-0:6.1.7-1.el8sat",
    "impact" : "important"
  } ],
  "references" : [ "https://www.cve.org/CVERecord?id=CVE-2022-32224\nhttps://nvd.nist.gov/vuln/detail/CVE-2022-32224\nhttps://discuss.rubyonrails.org/t/cve-2022-32224-possible-rce-escalation-bug-with-serialized-columns-in-active-record/81017" ],
  "name" : "CVE-2022-32224",
  "mitigation" : {
    "value" : "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
    "lang" : "en:us"
  },
  "csaw" : false
}