Open mend-for-github-com[bot] opened 1 year ago
The Laravel Framework.
Library home page: https://api.github.com/repos/laravel/framework/zipball/e3e8d585dcfab5abe6261b060f4df0d48f9924bf
Dependency Hierarchy: - :x: **laravel/framework-v5.5.48** (Vulnerable Library)
Found in HEAD commit: 6937a6413a72bc7060c19b8195035c2b9504cbd2
Found in base branch: master
OS Command injection vulnerability in function link in Filesystem.php in Laravel Framework before 5.8.17.
Publish Date: 2021-12-20
URL: CVE-2020-19316
Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: Required - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: High
Type: Upgrade version
Origin: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19316
Release Date: 2021-12-20
Fix Resolution: laravel/framework - 5.8.17
CVE-2020-19316 - High Severity Vulnerability
The Laravel Framework.
Library home page: https://api.github.com/repos/laravel/framework/zipball/e3e8d585dcfab5abe6261b060f4df0d48f9924bf
Dependency Hierarchy: - :x: **laravel/framework-v5.5.48** (Vulnerable Library)
Found in HEAD commit: 6937a6413a72bc7060c19b8195035c2b9504cbd2
Found in base branch: master
OS Command injection vulnerability in function link in Filesystem.php in Laravel Framework before 5.8.17.
Publish Date: 2021-12-20
URL: CVE-2020-19316
Base Score Metrics: - Exploitability Metrics: - Attack Vector: Network - Attack Complexity: Low - Privileges Required: None - User Interaction: Required - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: High - Integrity Impact: High - Availability Impact: High
For more information on CVSS3 Scores, click here.Type: Upgrade version
Origin: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19316
Release Date: 2021-12-20
Fix Resolution: laravel/framework - 5.8.17