CVE-2021-33564

An argument injection vulnerability in the Dragonfly gem before 1.4.0 for Ruby allows remote attackers to read and write to arbitrary files via a crafted URL when the verify_url option is disabled. This may lead to code execution. The problem occurs because the generate and process features mishandle use of the ImageMagick convert utility.
Argument Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 99%
VendorProductVersion
dragonfly_projectdragonfly
𝑥
< 1.4.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/markevans/dragonfly/commit/25399297bb457f7fcf8e3f91e85945b255b111b5
https://github.com/markevans/dragonfly/compare/v1.3.0...v1.4.0
https://github.com/markevans/dragonfly/issues/513
https://github.com/mlr0p/CVE-2021-33564
https://raw.githubusercontent.com/projectdiscovery/nuclei-templates/master/cves/2021/CVE-2021-33564.yaml
https://zxsecurity.co.nz/research/argunment-injection-ruby-dragonfly/
https://github.com/markevans/dragonfly/commit/25399297bb457f7fcf8e3f91e85945b255b111b5
https://github.com/markevans/dragonfly/compare/v1.3.0...v1.4.0
https://github.com/markevans/dragonfly/issues/513
https://github.com/mlr0p/CVE-2021-33564
https://raw.githubusercontent.com/projectdiscovery/nuclei-templates/master/cves/2021/CVE-2021-33564.yaml
https://zxsecurity.co.nz/research/argunment-injection-ruby-dragonfly/