CVE-2024-22047: 
Ruby vulnerability analysis and mitigation

CVE-2024-22047 is a race condition vulnerability discovered in Audited versions 4.0.0 to 5.3.3. The vulnerability affects the authentication logging mechanism, where an authenticated user can cause audit log entries to be incorrectly attributed to another user (NVD, GitHub Advisory).

The vulnerability stems from a race condition in threaded web server environments where Audited's use of Thread.current can lead to incorrect user attribution in audit logs. The issue has been assigned a CVSS v3.1 base score of 3.1 (Low) with the vector string CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N, indicating network accessibility with high attack complexity and low privileges required (NVD, GitHub Advisory).

When exploited, this vulnerability can result in audit log entries being incorrectly attributed to users other than those who actually performed the actions. This misattribution can compromise the integrity and reliability of audit trails, potentially affecting accountability and security tracking in affected systems (GitHub Advisory).

The vulnerability has been fixed in Audited version 5.3.3. The solution involves replacing the use of Thread.current with RequestStore for thread-safe requests. Users are advised to upgrade to version 5.3.3 or later to address this security issue (GitHub PR, GitHub Release).

The issue was initially reported in November 2021 and was actively discussed in the project's GitHub repository. The community worked collaboratively to develop and implement a solution, leading to the release of version 5.3.3 with the fix (GitHub Issue).