Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:24743
HistoryApr 10, 2020 - 1:03 a.m.

Denial Of Service (DoS)

2020-04-1001:03:23
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
29

EPSS

0.082

Percentile

94.4%

php is vulnerable to denial of service (DoS). The vulnerability exists as an insufficient input validation flaw, leading to a buffer over-read, was found in the PHP exif extension. A specially-crafted image file could cause the PHP interpreter to crash when a PHP script tries to extract Exchangeable image file format (Exif) metadata from the image file.

References