CVE-2022-24828

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Composer (affected versions not specified)

Description The issue is related to the VcsDriver::getFileContent method in Composer, a dependency manager for PHP. If a user can control the $file or $identifier argument, it may lead to a code injection vulnerability. This vulnerability can be exploited on platforms like packagist.org, where the readme field in composer.json can be used to inject parameters into hg/Mercurial via the $file argument or into git via the $identifier argument. To the best of our knowledge, this vulnerability was not actively exploited. The vulnerability has been patched on packagist.org and Private Packagist within a day of the vulnerability report.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

RCE

Code Injection

Argument Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-141CWE-20CWE-94CWE-88

Related Identifiers

ALT-PU-2022-1766

ALT-PU-2022-1775

BDU:2022-02944

BIT-COMPOSER-2022-24828

CVE-2022-24828

GHSA-X7CR-6QR6-2HH6

OPENSUSE-SU-2022:0132-1

OPENSUSE-SU-2022_3020-1

OPENSUSE-SU-2024:12048-1

OPENSUSE-SU-2024:12054-1

SUSE-SU-2022:3020-1

SUSE-SU-2022_3020-1

SUSE-SU-2026:1970-1

USN-7603-1

Affected Products

Alt Linux

Astra Linux

Composer

Linuxmint

Red Os

Suse

Ubuntu

CVE-2022-24828

Weakness Enumeration

Related Identifiers

Affected Products

References · 49