CyberSec.Space Logo
Back to CVE Browser

CVE-2021-33564

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0570%
EPSS Percentile31.27th
PublishedMay 29, 2021
Last ModifiedNov 21, 2024

Vulnerability Description

An argument injection vulnerability in the Dragonfly gem before 1.4.0 for Ruby allows remote attackers to read and write to arbitrary files via a crafted URL when the verify_url option is disabled. This may lead to code execution. The problem occurs because the generate and process features mishandle use of the ImageMagick convert utility.

Affected Platforms (CPE)

πŸ“¦
Dragonfly Project

Dragonfly

< 1.4.0

References & Advisories

πŸ”— https://github.com/markevans/dragonfly/commit/25399297bb457f7fcf8e3f91e85945b255b111b5
πŸ”— https://github.com/markevans/dragonfly/compare/v1.3.0...v1.4.0
πŸ”— https://github.com/markevans/dragonfly/issues/513
πŸ”— https://github.com/mlr0p/CVE-2021-33564
πŸ”— https://raw.githubusercontent.com/projectdiscovery/nuclei-templates/master/cves/2021/CVE-2021-33564.yaml
πŸ”— https://zxsecurity.co.nz/research/argunment-injection-ruby-dragonfly/
πŸ”— https://github.com/markevans/dragonfly/commit/25399297bb457f7fcf8e3f91e85945b255b111b5
πŸ”— https://github.com/markevans/dragonfly/compare/v1.3.0...v1.4.0

Related Vulnerabilities

CVE-2021-334739.1

An argument injection vulnerability in Dragonfly Ruby Gem v1.3.0 allows attackers to read and write arbitrary files when the verif...

CVE-2006-06447.5

Multiple directory traversal vulnerabilities in install.php in CPG-Nuke Dragonfly CMS (aka CPG Dragonfly CMS) 9.0.6.1 allow remote...

CVE-2005-22217.5

Multiple SQL injection vulnerabilities in Dragonfly Commerce allows remote attackers to modify SQL statements and possibly execute...

CVE-2006-07277.5

SQL injection vulnerability in mstrack.php in MusOX DF MSAnalysis (DFMSA), as used in some environments that use CPG-Nuke Dragonfl...