← back
CVE-2017-16894

CVE-2017-16894

EPSS 87.0%◆ VulnCheck KEV
Vexday Risk Score
82Fix now
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 87.0%KEV nãoPoC públicaNuclei simMetasploit simPatch
Lifecycle
20 Nov 2017Published on NVD
07 Aug 2018Metasploit module available
16 Jul 2019Public PoC
Weaponization speed
603 daysto first PoC
260 daysto Metasploit module
Recommendation: Patch as soon as possible — active exploitation confirmed.
In Laravel framework through 5.5.21, remote attackers can obtain sensitive information (such as externally usable passwords) via a direct request for the /.env URI. NOTE: this CVE is only about Laravel framework's writeNewEnvironmentFileWith function in src/Illuminate/Foundation/Console/KeyGenerateCommand.php, which uses file_put_contents without restricting the .env permissions. The .env filename is not used exclusively by Laravel framework.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.