{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-40176", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-04-09T20:59:17.619Z", "datePublished": "2026-04-15T20:47:39.839Z", "dateUpdated": "2026-04-16T14:16:39.968Z"}, "containers": {"cna": {"title": "Composer is vulnerable to Command Injection via Malicious Perforce Repository", "problemTypes": [{"descriptions": [{"cweId": "CWE-20", "lang": "en", "description": "CWE-20: Improper Input Validation", "type": "CWE"}]}, {"descriptions": [{"cweId": "CWE-78", "lang": "en", "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/composer/composer/security/advisories/GHSA-wg36-wvj6-r67p", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/composer/composer/security/advisories/GHSA-wg36-wvj6-r67p"}, {"name": "https://github.com/composer/composer/releases/tag/2.9.6", "tags": ["x_refsource_MISC"], "url": "https://github.com/composer/composer/releases/tag/2.9.6"}], "affected": [{"vendor": "composer", "product": "composer", "versions": [{"version": ">= 2.3, < 2.9.6", "status": "affected"}, {"version": ">= 1.0, < 2.2.27", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-04-15T20:47:39.839Z"}, "descriptions": [{"lang": "en", "value": "Composer is a dependency manager for PHP. Versions 1.0 through 2.2.26 and 2.3 through 2.9.5 contain a command injection vulnerability in the Perforce::generateP4Command() method, which constructs shell commands by interpolating user-supplied Perforce connection parameters (port, user, client) without proper escaping. An attacker can inject arbitrary commands through these values in a malicious composer.json declaring a Perforce VCS repository, leading to command execution in the context of the user running Composer, even if Perforce is not installed. VCS repositories are only loaded from the root composer.json or the composer config directory, so this cannot be exploited through composer.json files of packages installed as dependencies. Users are at risk if they run Composer commands on untrusted projects with attacker-supplied composer.json files. This issue has been fixed in Composer 2.2.27 (2.2 LTS) and 2.9.6 (mainline)."}], "source": {"advisory": "GHSA-wg36-wvj6-r67p", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-16T14:16:01.309579Z", "id": "CVE-2026-40176", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-16T14:16:39.968Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-40176", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-04-16T14:16:01.309579Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-16T14:16:20.118Z"}}], "cna": {"title": "Composer is vulnerable to Command Injection via Malicious Perforce Repository", "source": {"advisory": "GHSA-wg36-wvj6-r67p", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "composer", "product": "composer", "versions": [{"status": "affected", "version": ">= 2.3, < 2.9.6"}, {"status": "affected", "version": ">= 1.0, < 2.2.27"}]}], "references": [{"url": "https://github.com/composer/composer/security/advisories/GHSA-wg36-wvj6-r67p", "name": "https://github.com/composer/composer/security/advisories/GHSA-wg36-wvj6-r67p", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/composer/composer/releases/tag/2.9.6", "name": "https://github.com/composer/composer/releases/tag/2.9.6", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "Composer is a dependency manager for PHP. Versions 1.0 through 2.2.26 and 2.3 through 2.9.5 contain a command injection vulnerability in the Perforce::generateP4Command() method, which constructs shell commands by interpolating user-supplied Perforce connection parameters (port, user, client) without proper escaping. An attacker can inject arbitrary commands through these values in a malicious composer.json declaring a Perforce VCS repository, leading to command execution in the context of the user running Composer, even if Perforce is not installed. VCS repositories are only loaded from the root composer.json or the composer config directory, so this cannot be exploited through composer.json files of packages installed as dependencies. Users are at risk if they run Composer commands on untrusted projects with attacker-supplied composer.json files. This issue has been fixed in Composer 2.2.27 (2.2 LTS) and 2.9.6 (mainline)."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-20", "description": "CWE-20: Improper Input Validation"}]}, {"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-78", "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-04-15T20:47:39.839Z"}}}, "cveMetadata": {"cveId": "CVE-2026-40176", "state": "PUBLISHED", "dateUpdated": "2026-04-16T14:16:39.968Z", "dateReserved": "2026-04-09T20:59:17.619Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-04-15T20:47:39.839Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Composer is a dependency manager for PHP. Versions 1.0 through 2.2.26 and 2.3 through 2.9.5 contain a command injection vulnerability in the Perforce::generateP4Command() method, which constructs shell commands by interpolating user-supplied Perforce connection parameters (port, user, client) without proper escaping. An attacker can inject arbitrary commands through these values in a malicious composer.json declaring a Perforce VCS repository, leading to command execution in the context of the user running Composer, even if Perforce is not installed. VCS repositories are only loaded from the root composer.json or the composer config directory, so this cannot be exploited through composer.json files of packages installed as dependencies. Users are at risk if they run Composer commands on untrusted projects with attacker-supplied composer.json files. This issue has been fixed in Composer 2.2.27 (2.2 LTS) and 2.9.6 (mainline)."}], "id": "CVE-2026-40176", "lastModified": "2026-04-17T15:38:09.243", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-04-15T21:17:27.357", "references": [{"source": "security-advisories@github.com", "url": "https://github.com/composer/composer/releases/tag/2.9.6"}, {"source": "security-advisories@github.com", "url": "https://github.com/composer/composer/security/advisories/GHSA-wg36-wvj6-r67p"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Undergoing Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}, {"lang": "en", "value": "CWE-78"}], "source": "security-advisories@github.com", "type": "Primary"}]}

{"bugzilla": {"description": "composer: command injection via malicious Perforce repository definition", "id": "2458828", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2458828"}, "csaw": false, "cvss3": {"cvss3_base_score": "7.8", "cvss3_scoring_vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "status": "draft"}, "cwe": "CWE-78", "details": ["No description is available for this CVE."], "name": "CVE-2026-40176", "package_state": [{"cpe": "cpe:/a:redhat:hummingbird:1", "fix_state": "Affected", "package_name": "composer", "product_name": "Red Hat Hardened Images"}], "public_date": "2026-04-15T20:47:39Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2026-40176\nhttps://nvd.nist.gov/vuln/detail/CVE-2026-40176\nhttps://github.com/composer/composer/releases/tag/2.9.6\nhttps://github.com/composer/composer/security/advisories/GHSA-wg36-wvj6-r67p"], "threat_severity": "Important"}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[2.3,2.9.6)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[1.0,2.2.27)"}}], "enrichment": {"confidence": 92.0, "confidence_source": "matching", "scores": [{"score": 92.0, "source": "matching"}]}, "original": {"product": "composer", "source": "cna", "vendor": "composer"}, "product": "composer", "vendor": "getcomposer"}], "analysis": {"en": {"generated_at": "2026-04-16T02:19:11.715864+00:00", "value": {"mitigation_remediation": ["Upgrade Composer to version 2.2.27 or higher, which removes the vulnerable code path.", "Limit Composer usage to trusted code bases; avoid running Composer on external or unverified projects that include Perforce VCS definitions.", "Inspect and cleanse existing composer.json files of any Perforce VCS entries before executing Composer commands if the project\u2019s provenance is uncertain."], "summary": {"action": "Immediate Patch", "impact": "Command Injection"}, "threat_synthesis": {"affected_systems": "Affected releases of Composer span version ranges 1.0 through 2.2.26 and 2.3 through 2.9.5. The issue is fixed from Composer 2.2.27 onward and from 2.9.6 in the mainline. Only the root composer.json or the Composer configuration directory are considered during VCS loading, meaning that dependency package composer.json files cannot trigger the flaw. Users are at risk only when they run Composer commands against untrusted projects that contain an attacker\u2011supplied composer.json with a Perforce VCS repository.", "description_and_impact": "The vulnerability originates in the Composer dependency manager\u2019s Perforce::generateP4Command() routine, which concatenates user\u2010controlled connection parameters\u2014port, user, and client\u2014directly into a shell command without quoting or escaping. This allows an attacker to place arbitrary shell code in these fields of a malicious composer.json file that declares a Perforce VCS repository. When Composer is run in the context of the attacker\u2019s set of repository parameters, the injected code is executed by the user running Composer, providing full command execution on that system. The flaw is a classic command injection, classified as CWE\u201120 and CWE\u201178.", "risk_and_exploitability": "The CVSS score of 7.8 indicates a high\u2011severity vulnerability. The EPSS score is not provided, suggesting no measurement of exploitation probability is available at this time. The flaw is not listed in CISA\u2019s KEV catalog, so no confirmed active exploits are documented. Exploitation requires the attacker to supply a crafted composer.json file, so it is contingent on the user executing Composer on untrusted input. In practice, the most likely vector is a developer pulling a project from a source that an attacker controls, leading to execution in the developer\u2019s user context."}}}}, "created": "2026-04-16T02:30:21.678605+00:00", "updated": "2026-04-16T09:00:05.123190+00:00", "vendors": ["getcomposer", "getcomposer$PRODUCT$composer"]}