Lucene search

K
cvelistPhpCVELIST:CVE-2023-3824
HistoryAug 11, 2023 - 5:48 a.m.

CVE-2023-3824 Buffer overflow and overread in phar_dir_read()

2023-08-1105:48:34
CWE-119
php
www.cve.org
10
cve-2023-3824
php
buffer overflow
phar_dir_read
memory corruption
rce

CVSS3

9.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

AI Score

10

Confidence

High

EPSS

0.001

Percentile

49.5%

In PHP version 8.0.* before 8.0.30,  8.1.* before 8.1.22, and 8.2.* before 8.2.8, when loading phar file, while reading PHAR directory entries, insufficient length checking may lead to a stack buffer overflow, leading potentially to memory corruption or RCE.

CNA Affected

[
  {
    "defaultStatus": "affected",
    "product": "PHP",
    "vendor": "PHP Group",
    "versions": [
      {
        "lessThan": "8.0.30",
        "status": "affected",
        "version": "8.0.*",
        "versionType": "semver"
      },
      {
        "lessThan": "8.1.22",
        "status": "affected",
        "version": "8.1.*",
        "versionType": "semver"
      },
      {
        "lessThan": "8.2.8",
        "status": "affected",
        "version": "8.2.*",
        "versionType": "semver"
      }
    ]
  }
]

CVSS3

9.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

AI Score

10

Confidence

High

EPSS

0.001

Percentile

49.5%