8.7

CVSS Score

4.0

Basic Information

CVE ID

CVE-2024-52301

GHSA ID

GHSA-gv7v-rgg6-548h

EPSS Score

0.93203%

CWE

CWE-88

Published

11/12/2024

Updated

12/21/2024

KEV Status

Technology

PHP

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2024-52301

CVE-2024-52301:
Laravel environment manipulation via query string

Description

When the register_argc_argv php directive is set to on , and users call any URL with a special crafted query string, they are able to change the environment used by the framework when handling the request.

Resolution

The framework now ignores argv values for environment detection on non-cli SAPIs.

(GitHub Advisory)

8.7

CVSS Score

4.0

Basic Information

CVE ID

CVE-2024-52301

GHSA ID

GHSA-gv7v-rgg6-548h

EPSS Score

0.93203%

CWE

CWE-88

Published

11/12/2024

Updated

12/21/2024

KEV Status

Technology

PHP

Technical Details

CVSS Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
laravel/framework	composer	< 6.20.45	6.20.45
laravel/framework	composer	>= 7.0.0, < 7.30.7	7.30.7
laravel/framework	composer	>= 8.0.0, < 8.83.28	8.83.28
laravel/framework	composer	>= 9.0.0, < 9.52.17	9.52.17
laravel/framework	composer	>= 10.0.0, < 10.48.23	10.48.23
laravel/framework	composer	>= 11.0.0, < 11.31.0	11.31.0

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from environment detection using argv parameters in web contexts. The resolution explicitly states ignoring argv for non-CLI SAPIs. The DetectEnvironment class is responsible for environment detection in Laravel, and its detectEnvironment() method would be the logical place where argv parsing occurred before the patch. The confidence is high because the vulnerability description directly matches this component's functionality and the patched behavior aligns with this method's responsibility.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

## **s*ription W**n t** `r**ist*r_*r**_*r*v p*p` *ir**tiv* is s*t to `on` , *n* us*rs **ll *ny URL wit* * sp**i*l *r**t** qu*ry strin*, t**y *r* **l* to ***n** t** *nvironm*nt us** *y t** *r*m*work w**n **n*lin* t** r*qu*st. ## R*solution T** *r*m

Reasoning

T** vuln*r**ility st*ms *rom *nvironm*nt **t**tion usin* `*r*v` p*r*m*t*rs in w** *ont*xts. T** r*solution *xpli*itly st*t*s i*norin* `*r*v` *or non-*LI S*PIs. T** `**t**t*nvironm*nt` *l*ss is r*sponsi*l* *or *nvironm*nt **t**tion in L*r*v*l, *n* its

8.7

Basic Information

Concerned about an active attack path?

CVE-2024-52301: Laravel environment manipulation via query string

Description

Resolution

8.7

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

CVE-2024-52301:
Laravel environment manipulation via query string

Vulnerability Intelligence
Miggo AI