Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Package Hub 15 SP3 package php-composer, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (3)
CVE-2021-29472 — CVSS 8.8 (high): Composer is a dependency manager for PHP. URLs for Mercurial repositories in the root composer.json and package source download URLs are…
CVE-2022-24828 — CVSS 8.3 (high): Composer is a dependency manager for the PHP programming language. Integrators using Composer code to call `VcsDriver::getFileContent` can…
CVE-2021-41116 — CVSS 8.2 (high): Composer is an open source dependency manager for the PHP language. In affected versions windows users running Composer to install…