CVE-2024-24821

Summary

CVE-2024-24821 is a vulnerability affecting Composer, the dependency manager for PHP. In susceptible versions, several files within the local working directory are incorporated during Composer's execution, potentially enabling arbitrary code execution. This can result in local privilege escalation, lateral user movement, or malicious code execution. All Composer CLI commands are susceptible, including self-updates, and the risk is heightened when Composer is run with sudo or within untrusted pipelines or environments. To mitigate the issue, it is recommended to apply patches in versions 2.7.0 and 2.2.23 as soon as possible. Alternatively, sudo privileges for all Composer users should be revoked, and Composer should not be executed within untrusted directories. A reset of `vendor/composer/InstalledVersions.php` and `vendor/composer/installed.php` can also be performed using the provided command.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.