CVE-2022-41875

CRITICAL

Optica <0.10.2 - RCE

Title source: llm

Description

A remote code execution (RCE) vulnerability in Optica allows unauthenticated attackers to execute arbitrary code via specially crafted JSON payloads. Specially crafted JSON payloads may lead to RCE (remote code execution) on the attacked system running Optica. The vulnerability was patched in v. 0.10.2, where the call to the function `oj.load` was changed to `oj.safe_load`.

References (3)

[Third Party Advisory] https://github.com/airbnb/optica/security/advisories/GHSA-cf87-4h6x-phh6

[Third Party Advisory] https://github.com/ohler55/oj/blob/develop/pages/Security.md

View Writeup ZIP pw:eip

[Release Notes, Vendor Advisory] https://www.rubydoc.info/gems/oj/3.0.2/Oj.safe_load

Scores

CVSS v3 10.0

EPSS 0.1511

EPSS Percentile 94.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Classification

CWE

CWE-502

Status published

Affected Products (1)

airbnb/optica < 0.10.2

Timeline

Published Nov 23, 2022

Tracked Since Feb 18, 2026