{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-52301", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-11-06T19:00:26.396Z", "datePublished": "2024-11-12T19:32:14.415Z", "dateUpdated": "2024-12-21T17:02:39.839Z"}, "containers": {"cna": {"title": "Laravel allows environment manipulation via query string", "problemTypes": [{"descriptions": [{"cweId": "CWE-88", "lang": "en", "description": "CWE-88: Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')", "type": "CWE"}]}], "metrics": [{"cvssV4_0": {"attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "userInteraction": "NONE", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "baseScore": 8.7, "baseSeverity": "HIGH", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N", "version": "4.0"}}], "references": [{"name": "https://github.com/laravel/framework/security/advisories/GHSA-gv7v-rgg6-548h", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/laravel/framework/security/advisories/GHSA-gv7v-rgg6-548h"}], "affected": [{"vendor": "laravel", "product": "framework", "versions": [{"version": "< 6.20.45", "status": "affected"}, {"version": ">= 7.0.0, < 7.30.7", "status": "affected"}, {"version": ">= 8.0.0, < 8.83.28", "status": "affected"}, {"version": ">= 9.0.0, < 9.52.17", "status": "affected"}, {"version": ">= 10.0.0, < 10.48.23", "status": "affected"}, {"version": ">= 11.0.0, < 11.31.0", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-11-12T19:32:14.415Z"}, "descriptions": [{"lang": "en", "value": "Laravel is a web application framework. When the register_argc_argv php directive is set to on , and users call any URL with a special crafted query string, they are able to change the environment used by the framework when handling the request. The vulnerability fixed in 6.20.45, 7.30.7, 8.83.28, 9.52.17, 10.48.23, and 11.31.0. The framework now ignores argv values for environment detection on non-cli SAPIs."}], "source": {"advisory": "GHSA-gv7v-rgg6-548h", "discovery": "UNKNOWN"}}, "adp": [{"affected": [{"vendor": "laravel", "product": "framework", "cpes": ["cpe:2.3:a:laravel:framework:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "6.20.45", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThanOrEqual": "7.0.0", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "7.30.7", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThanOrEqual": "8.0.0", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "8.83.28", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThanOrEqual": "9.0.0", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "9.52.17", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThanOrEqual": "10.0.0", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "10.48.23", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThanOrEqual": "11.0.0", "versionType": "custom"}, {"version": "0", "status": "affected", "lessThan": "11.31.0", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-11-13T14:51:08.466106Z", "id": "CVE-2024-52301", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-21T16:14:52.925Z"}}, {"title": "CVE Program Container", "references": [{"url": "https://lists.debian.org/debian-lts-announce/2024/12/msg00019.html"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-12-21T17:02:39.839Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://lists.debian.org/debian-lts-announce/2024/12/msg00019.html"}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-12-21T17:02:39.839Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-52301", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-11-13T14:51:08.466106Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:laravel:framework:*:*:*:*:*:*:*:*"], "vendor": "laravel", "product": "framework", "versions": [{"status": "affected", "version": "0", "lessThan": "6.20.45", "versionType": "custom"}, {"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "7.0.0"}, {"status": "affected", "version": "0", "lessThan": "7.30.7", "versionType": "custom"}, {"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "8.0.0"}, {"status": "affected", "version": "0", "lessThan": "8.83.28", "versionType": "custom"}, {"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "9.0.0"}, {"status": "affected", "version": "0", "lessThan": "9.52.17", "versionType": "custom"}, {"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "10.0.0"}, {"status": "affected", "version": "0", "lessThan": "10.48.23", "versionType": "custom"}, {"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "11.0.0"}, {"status": "affected", "version": "0", "lessThan": "11.31.0", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-13T14:47:40.395Z"}}], "cna": {"title": "Laravel allows environment manipulation via query string", "source": {"advisory": "GHSA-gv7v-rgg6-548h", "discovery": "UNKNOWN"}, "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 8.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "NONE"}}], "affected": [{"vendor": "laravel", "product": "framework", "versions": [{"status": "affected", "version": "< 6.20.45"}, {"status": "affected", "version": ">= 7.0.0, < 7.30.7"}, {"status": "affected", "version": ">= 8.0.0, < 8.83.28"}, {"status": "affected", "version": ">= 9.0.0, < 9.52.17"}, {"status": "affected", "version": ">= 10.0.0, < 10.48.23"}, {"status": "affected", "version": ">= 11.0.0, < 11.31.0"}]}], "references": [{"url": "https://github.com/laravel/framework/security/advisories/GHSA-gv7v-rgg6-548h", "name": "https://github.com/laravel/framework/security/advisories/GHSA-gv7v-rgg6-548h", "tags": ["x_refsource_CONFIRM"]}], "descriptions": [{"lang": "en", "value": "Laravel is a web application framework. When the register_argc_argv php directive is set to on , and users call any URL with a special crafted query string, they are able to change the environment used by the framework when handling the request. The vulnerability fixed in 6.20.45, 7.30.7, 8.83.28, 9.52.17, 10.48.23, and 11.31.0. The framework now ignores argv values for environment detection on non-cli SAPIs."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-88", "description": "CWE-88: Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-11-12T19:32:14.415Z"}}}, "cveMetadata": {"cveId": "CVE-2024-52301", "state": "PUBLISHED", "dateUpdated": "2024-12-21T17:02:39.839Z", "dateReserved": "2024-11-06T19:00:26.396Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2024-11-12T19:32:14.415Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:laravel:framework:*:*:*:*:*:*:*:*", "matchCriteriaId": "0E4D3C77-8967-41A0-B092-AE27DA385578", "versionEndExcluding": "6.20.45", "vulnerable": true}, {"criteria": "cpe:2.3:a:laravel:framework:*:*:*:*:*:*:*:*", "matchCriteriaId": "617A174E-7DE0-4145-BCE6-2A58CBBB6B21", "versionEndExcluding": "7.30.7", "versionStartIncluding": "7.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:laravel:framework:*:*:*:*:*:*:*:*", "matchCriteriaId": "A506D04F-C9D9-4E37-B75F-29DA3943ECE0", "versionEndExcluding": "8.83.28", "versionStartIncluding": "8.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:laravel:framework:*:*:*:*:*:*:*:*", "matchCriteriaId": "BB7F8265-5DF9-49A5-9D23-A459F16A948F", "versionEndExcluding": "9.52.17", "versionStartIncluding": "9.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:laravel:framework:*:*:*:*:*:*:*:*", "matchCriteriaId": "9575B7A1-E291-4EC2-8557-ABCCACEB8622", "versionEndExcluding": "10.48.23", "versionStartIncluding": "10.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:laravel:framework:*:*:*:*:*:*:*:*", "matchCriteriaId": "6346E858-7A00-4E7C-A3C2-8858C1D7C140", "versionEndExcluding": "11.31.0", "versionStartIncluding": "11.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*", "matchCriteriaId": "FA6FEEC2-9F11-4643-8827-749718254FED", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Laravel is a web application framework. When the register_argc_argv php directive is set to on , and users call any URL with a special crafted query string, they are able to change the environment used by the framework when handling the request. The vulnerability fixed in 6.20.45, 7.30.7, 8.83.28, 9.52.17, 10.48.23, and 11.31.0. The framework now ignores argv values for environment detection on non-cli SAPIs."}, {"lang": "es", "value": "Laravel es un framework de aplicaciones web. Cuando la directiva de php register_argc_argv est\u00e1 establecida en on y los usuarios llaman a cualquier URL con una cadena de consulta especialmente manipulada, pueden cambiar el entorno que utiliza el framework al procesar la solicitud. La vulnerabilidad se corrigi\u00f3 en 6.20.45, 7.30.7, 8.83.28, 9.52.17, 10.48.23 y 11.31.0. El framework ahora ignora los valores argv para la detecci\u00f3n del entorno en SAPI que no son de CLI."}], "id": "CVE-2024-52301", "lastModified": "2025-08-26T02:37:14.610", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 8.7, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2024-11-12T20:15:14.087", "references": [{"source": "security-advisories@github.com", "tags": ["Vendor Advisory"], "url": "https://github.com/laravel/framework/security/advisories/GHSA-gv7v-rgg6-548h"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "Mailing List"], "url": "https://lists.debian.org/debian-lts-announce/2024/12/msg00019.html"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-88"}], "source": "security-advisories@github.com", "type": "Secondary"}]}

{}