| Added |
CPE Configuration |
|
OR
*cpe:2.3:a:getcomposer:composer:1.0.0:alpha1:*:*:*:*:*:*
*cpe:2.3:a:getcomposer:composer:1.0.0:alpha10:*:*:*:*:*:*
*cpe:2.3:a:getcomposer:composer:1.0.0:alpha11:*:*:*:*:*:*
*cpe:2.3:a:getcomposer:composer:1.0.0:alpha2:*:*:*:*:*:*
*cpe:2.3:a:getcomposer:composer:1.0.0:alpha3:*:*:*:*:*:*
*cpe:2.3:a:getcomposer:composer:1.0.0:alpha4:*:*:*:*:*:*
*cpe:2.3:a:getcomposer:composer:1.0.0:alpha5:*:*:*:*:*:*
*cpe:2.3:a:getcomposer:composer:1.0.0:alpha6:*:*:*:*:*:*
*cpe:2.3:a:getcomposer:composer:1.0.0:alpha7:*:*:*:*:*:*
*cpe:2.3:a:getcomposer:composer:1.0.0:alpha8:*:*:*:*:*:*
*cpe:2.3:a:getcomposer:composer:1.0.0:alpha9:*:*:*:*:*:*
|
| Added |
CVSS V3.1 |
|
NIST AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
| Added |
CWE |
|
NIST CWE-345
|
| Changed |
Reference Type |
https://flyingmana.de/blog_en/2016/02/14/composer_cache_injection_vulnerability_cve_2015_8371.html No Types Assigned
|
https://flyingmana.de/blog_en/2016/02/14/composer_cache_injection_vulnerability_cve_2015_8371.html Exploit, Third Party Advisory
|
| Changed |
Reference Type |
https://github.com/FriendsOfPHP/security-advisories/blob/e26be423c5bcfdb38478d2f92d1f928c15afb561/composer/composer/CVE-2015-8371.yaml No Types Assigned
|
https://github.com/FriendsOfPHP/security-advisories/blob/e26be423c5bcfdb38478d2f92d1f928c15afb561/composer/composer/CVE-2015-8371.yaml Third Party Advisory
|
| Changed |
Reference Type |
https://github.com/composer/composer No Types Assigned
|
https://github.com/composer/composer Product
|
| Changed |
Reference Type |
https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/composer/composer/CVE-2015-8371.yml No Types Assigned
|
https://gitlab.com/gitlab-org/advisories-community/-/blob/main/packagist/composer/composer/CVE-2015-8371.yml Third Party Advisory
|
) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
