CVE-2025-24293 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2025-24293 Interim 1 1 2026-03-05T01:12:43Z current 2026-03-05T01:12:43Z 2026-03-05T01:12:43Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2025-24293 # Active Storage allowed transformation methods potentially unsafe Active Storage attempts to prevent the use of potentially unsafe image transformation methods and parameters by default. The default allowed list contains three methods allow for the circumvention of the safe defaults which enables potential command injection vulnerabilities in cases where arbitrary user supplied input is accepted as valid transformation methods or parameters. Impact ------ This vulnerability impacts applications that use Active Storage with the image_processing processing gem in addition to mini_magick as the image processor. Vulnerable code will look something similar to this: ``` <%= image_tag blob.variant(params[:t] => params[:v]) %> ``` Where the transformation method or its arguments are untrusted arbitrary input. All users running an affected release should either upgrade or use one of the workarounds immediately. Workarounds ----------- Consuming user supplied input for image transformation methods or their parameters is unsupported behavior and should be considered dangerous. Strict validation of user supplied methods and parameters should be performed as well as having a strong [ImageMagick security policy](https://imagemagick.org/script/security-policy.php) deployed. Credits ------- Thank you [lio346](https://hackerone.com/lio346) for reporting this! The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise High Availability Extension 12 SP5 SUSE Linux Enterprise High Availability Extension 15 SP4 SUSE Linux Enterprise High Availability Extension 15 SP5 SUSE Linux Enterprise High Availability Extension 15 SP7 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP applications 16.0 openSUSE Leap 15.6 hawk2 hawk2 as a component of SUSE Linux Enterprise High Availability Extension 12 SP5 hawk2 as a component of SUSE Linux Enterprise High Availability Extension 15 SP4 hawk2 as a component of SUSE Linux Enterprise High Availability Extension 15 SP5 hawk2 as a component of SUSE Linux Enterprise High Availability Extension 15 SP7 hawk2 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 hawk2 as a component of SUSE Linux Enterprise Server for SAP applications 16.0 hawk2 as a component of openSUSE Leap 15.6 # Active Storage allowed transformation methods potentially unsafe Active Storage attempts to prevent the use of potentially unsafe image transformation methods and parameters by default. The default allowed list contains three methods allow for the circumvention of the safe defaults which enables potential command injection vulnerabilities in cases where arbitrary user supplied input is accepted as valid transformation methods or parameters. Impact ------ This vulnerability impacts applications that use Active Storage with the image_processing processing gem in addition to mini_magick as the image processor. Vulnerable code will look something similar to this: ``` <%= image_tag blob.variant(params[:t] => params[:v]) %> ``` Where the transformation method or its arguments are untrusted arbitrary input. All users running an affected release should either upgrade or use one of the workarounds immediately. Workarounds ----------- Consuming user supplied input for image transformation methods or their parameters is unsupported behavior and should be considered dangerous. Strict validation of user supplied methods and parameters should be performed as well as having a strong [ImageMagick security policy](https://imagemagick.org/script/security-policy.php) deployed. Credits ------- Thank you [lio346](https://hackerone.com/lio346) for reporting this! CVE-2025-24293 SUSE Linux Enterprise High Availability Extension 12 SP5:hawk2 SUSE Linux Enterprise High Availability Extension 15 SP4:hawk2 SUSE Linux Enterprise High Availability Extension 15 SP5:hawk2 SUSE Linux Enterprise High Availability Extension 15 SP7:hawk2 SUSE Linux Enterprise Server for SAP Applications 12 SP5:hawk2 SUSE Linux Enterprise Server for SAP applications 16.0:hawk2 openSUSE Leap 15.6:hawk2 important 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H