N/A

CVSS Score

Basic Information

CVE ID

GHSA ID

GHSA-7852-w36x-6mf6

EPSS Score

CWE

CWE-1240

Published

5/15/2024

Updated

5/15/2024

KEV Status

Technology

PHP

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

GHSA-7852-w36x-6mf6

GHSA-7852-w36x-6mf6: Laravel Encrypter Component Potential Decryption Failure Leading to Unintended Behavior

The Laravel Encrypter component is susceptible to a vulnerability that may result in decryption failure, leading to an unexpected return of false. Exploiting this issue requires the attacker to manipulate the encrypted payload before decryption. When combined with weak type comparisons in the application's code, such as the example below:

<?php

$decyptedValue = decrypt($secret);

if ($decryptedValue == '') {
    // Code is run even though decrypted value is false...
}

(GitHub Advisory)

N/A

CVSS Score

Basic Information

CVE ID

GHSA ID

GHSA-7852-w36x-6mf6

EPSS Score

CWE

CWE-1240

Published

5/15/2024

Updated

5/15/2024

KEV Status

Technology

PHP

Technical Details

CVSS Vector

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
laravel/framework	composer	< 5.5.40	5.5.40
laravel/framework	composer	>= 5.6.0, < 5.6.15	5.6.15

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stems from insufficient IV validation in the validPayload method. The pre-patch implementation only checked for the existence of IV/value/mac fields but didn't verify the IV length matches the cipher's requirements (via openssl_cipher_iv_length). This allowed attackers to craft payloads with invalid IV lengths that would pass initial validation but fail during actual decryption, returning false. The commit 28e53f2 specifically adds the IV length check to this function, confirming it as the vulnerable point. The function's role in payload validation makes it the critical component enabling this cryptographic weakness (CWE-1240).

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

T** L*r*v*l *n*rypt*r *ompon*nt is sus**pti*l* to * vuln*r**ility t**t m*y r*sult in ***ryption **ilur*, l***in* to *n un*xp**t** r*turn o* `**ls*`. *xploitin* t*is issu* r*quir*s t** *tt**k*r to m*nipul*t* t** *n*rypt** p*ylo** ***or* ***ryption. W*

Reasoning

T** vuln*r**ility st*ms *rom insu**i*i*nt IV v*li**tion in t** v*li*P*ylo** m*t*o*. T** pr*-p*t** impl*m*nt*tion only ****k** *or t** *xist*n** o* IV/v*lu*/m** *i*l*s *ut *i*n't v*ri*y t** IV l*n*t* m*t***s t** *ip**r's r*quir*m*nts (vi* op*nssl_*ip*

N/A

Basic Information

Concerned about an active attack path?

GHSA-7852-w36x-6mf6: Laravel Encrypter Component Potential Decryption Failure Leading to Unintended Behavior

N/A

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI