CVE-2018-15133

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2018-15133
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-15133.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2018-15133
Aliases
Published
2018-08-09T19:29:00.333Z
Modified
2026-03-14T09:28:00.496018Z
Severity
  • 8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

In Laravel Framework through 5.5.40 and 5.6.x through 5.6.29, remote code execution might occur as a result of an unserialize call on a potentially untrusted X-XSRF-TOKEN value. This involves the decrypt method in Illuminate/Encryption/Encrypter.php and PendingBroadcast in gadgetchains/Laravel/RCE/3/chain.php in phpggc. The attacker must know the application key, which normally would never occur, but could happen if the attacker previously had privileged access or successfully accomplished a previous attack.

References

Affected packages

Git / github.com/laravel/framework

Affected ranges

Type
GIT
Repo
https://github.com/laravel/framework
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
d724ce0aa61bbd9adf658215eec484f5dd6711d6
Introduced
56a58e0fa3d845bb992d7c64ac9bb6d0c24b745a
Last affected
acc6b5c54ab196d3358f60acc5f55d9ebaaccc02
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.5.40"
        },
        {
            "introduced": "5.6.0"
        },
        {
            "last_affected": "5.6.29"
        }
    ]
}

Affected versions

v5.*
v5.5.35
v5.5.36
v5.5.37
v5.5.38
v5.5.39
v5.5.40
v5.6.0

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-15133.json"