CVE-2024-51755 — Resource Exposure in Twig

CWE-668 — Resource Exposure6 documents5 sources

Severity

2.2LOWNVD

EPSS

0.1%

top 64.86%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Twigphp Twig Twig

Timeline

PublishedNov 6

Description

Twig is a template language for PHP. In a sandbox, an attacker can access attributes of Array-like objects as they were not checked by the security policy. They are now checked via the property policy and the `__isset()` method is now called after the security check. This is a BC break. This issue has been patched in versions 3.11.2 and 3.14.1. All users are advised to upgrade. There are no known workarounds for this issue.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:NExploitability: 0.7 | Impact: 1.4

Affected Packages2 packages

▶Packagisttwig/twig3.12 — 3.14.1+1

▶CVEListV5twigphp/twig< 3.11.2+1

🔴Vulnerability Details

CVEList

Unguarded calls to __isset() and to array-accesses when the sandbox is enabled in Twig↗2024-11-06

▶

OSV

CVE-2024-51755: Twig is a template language for PHP↗2024-11-06

▶

OSV

Twig has unguarded calls to `__isset()` and to array-accesses when the sandbox is enabled↗2024-11-06

▶

GHSA

Twig has unguarded calls to `__isset()` and to array-accesses when the sandbox is enabled↗2024-11-06

▶

📋Vendor Advisories

Debian

CVE-2024-51755: php-twig - Twig is a template language for PHP. In a sandbox, an attacker can access attrib...↗2024

▶