7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.001 Low
EPSS
Percentile
24.6%
In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3,
excessive number of parts in HTTP form upload can cause high resource
consumption and excessive number of log entries. This can cause denial of
service on the affected server by exhausting CPU resources or disk space.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 14.04 | noarch | php5 | < any | UNKNOWN |
ubuntu | 16.04 | noarch | php7.0 | < 7.0.33-0ubuntu0.16.04.16+esm5) Available with Ubuntu Pro or Ubuntu Pro (Infra-only | UNKNOWN |
ubuntu | 18.04 | noarch | php7.2 | < 7.2.24-0ubuntu0.18.04.17 | UNKNOWN |
ubuntu | 20.04 | noarch | php7.4 | < 7.4.3-4ubuntu2.18 | UNKNOWN |
ubuntu | 22.04 | noarch | php8.1 | < 8.1.2-1ubuntu2.11 | UNKNOWN |
ubuntu | 22.10 | noarch | php8.1 | < 8.1.7-1ubuntu3.3 | UNKNOWN |
ubuntu | 23.04 | noarch | php8.1 | < 8.1.12-1ubuntu4 | UNKNOWN |
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-0662
github.com/php/php-src/security/advisories/GHSA-54hq-v5wp-fqgv
launchpad.net/bugs/cve/CVE-2023-0662
nvd.nist.gov/vuln/detail/CVE-2023-0662
security-tracker.debian.org/tracker/CVE-2023-0662
ubuntu.com/security/notices/USN-5902-1
ubuntu.com/security/notices/USN-5905-1
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.001 Low
EPSS
Percentile
24.6%