CVE-2022-2870

State: PUBLISHED · Published: 2022-08-17 · Updated: 2025-04-15 · Assigner: VulDB

Description

A vulnerability was found in laravel 5.1 and classified as problematic. This issue affects some unknown processing. The manipulation leads to deserialization. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-206501 was assigned to this vulnerability.

CWE

CWE-502 — CWE-502 Deserialization

Affected

unspecified / laravel — v=5.1 [affected]

CVSS

3.1 score=4.1 severity=MEDIUM CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L

References

https://github.com/beicheng-maker/vulns/issues/2 x_refsource_MISC
https://vuldb.com/?id.206501 x_refsource_MISC

Source

cvelistV5-main/cves/2022/2xxx/CVE-2022-2870.json