๐Ÿ” CVE Alert

CVE-2024-34515

HIGH 8.8
CVSS Score
8.8
EPSS Score
0.0%
EPSS Percentile
0th

image-optimizer before 1.7.3 allows PHAR deserialization, e.g., the phar:// protocol in arguments to file_exists().

Vendor n/a
Product n/a
Published May 5, 2024
Last Updated Aug 21, 2024
Stay Ahead of the Next One

Get instant alerts for n/a n/a

Be the first to know when new high vulnerabilities affecting n/a n/a are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

n/a / n/a
n/a

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
github.com: https://github.com/spatie/image-optimizer/issues/210 github.com: https://github.com/spatie/image-optimizer/compare/1.7.2...1.7.3 github.com: https://github.com/spatie/image-optimizer/pull/211