SUSE-SU-2022:3860-1

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2022-27777

Published: 03 Nov 2022, 06:26

Last modified:04 Feb 2026, 02:47

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

03 Nov 2022, 06:26

Published

Vulnerability first disclosed

04 Feb 2026, 02:47

Last Modified

Vulnerability information updated

Description

Security update for rubygem-actionview-4_2 This update for rubygem-actionview-4_2 fixes the following issues: - CVE-2022-27777: Fixed cross-site scripting vulnerability in Action View tag helpers (bsc#1199060).

Affected Systems

suse•rubygem-actionview-4_2&distro=SUSE OpenStack Cloud Crowbar 8
< 4.2.9-9.15.1
suse•rubygem-actionview-4_2&distro=SUSE OpenStack Cloud Crowbar 9
< 4.2.9-9.15.1
suse•rubygem-activesupport-4_2&distro=SUSE OpenStack Cloud Crowbar 8
< 4.2.9-7.12.1
suse•rubygem-activesupport-4_2&distro=SUSE OpenStack Cloud Crowbar 9
< 4.2.9-7.12.1

SUSE-SU-2022:3860-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (3)