CVE-2024-2756

CWE-20 — Improper Input Validation CWE-787 — Out-of-bounds Write12 documents8 sources

Severity

6.5MEDIUM

EPSS

7.7%

top 8.05%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

PHP Group PHP

Timeline

PublishedApr 29

Latest updateJul 22

Description

Due to an incomplete fix to CVE-2022-31629 https://github.com/advisories/GHSA-c43m-486j-j32p , network and same-site attackers can set a standard insecure cookie in the victim's browser which is treated as a __Host- or __Secure- cookie by PHP applications.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages7 packages

▶CVEListV5php_group/php8.1.* — 8.1.28+2

▶Debianphp7.4< 7.4.33-1+deb11u5

▶Debianphp8.2< 8.2.18-1~deb12u1

▶Ubuntuphp7.4< 7.4.3-4ubuntu2.21

▶Ubuntuphp8.1< 8.1.2-1ubuntu2.16

🔴Vulnerability Details

GHSA

SixLabors ImageSharp Out-of-bounds Write↗2024-07-22

▶

OSV

php7.4, php8.1, php8.2 vulnerabilities↗2024-05-02

▶

CVEList

__Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix↗2024-04-29

▶

OSV

php7.0, php7.2, php7.4, php8.1 vulnerabilities↗2024-04-29

▶

OSV

CVE-2024-2756: Due to an incomplete fix to CVE-2022-31629 https://github↗2024-04-29

▶

📋Vendor Advisories

Ubuntu

PHP vulnerabilities↗2024-05-02

▶

Ubuntu

PHP vulnerabilities↗2024-04-29

▶

Red Hat

php: host/secure cookie bypass due to partial CVE-2022-31629 fix↗2024-04-12

▶

Microsoft

__Host-/__Secure- cookie bypass due to partial CVE-2022-31629 fix↗2024-04-09

▶

Debian

CVE-2024-2756: php7.4 - Due to an incomplete fix to CVE-2022-31629 https://github.com/advisories/GHSA-c...↗2024

▶