Ruby on Rails DoubleTap RCE (CVE-2019-5420)
Description
In development mode, Ruby on Rails application uses an application name as the secret_key_base. It allows an attacker to set a valid signature for a serialized payload to ActiveStorage component. During the deserialization process, ActiveStorage executes arbitrary commands in OS.
Remediation
Upgrade to the latest version of Ruby on Rails