Lucene search

PhpCVE-2023-3824

HistoryAug 11, 2023 - 6:15 a.m.

CVE-2023-3824

2023-08-1106:15:10

CWE-119

php

web.nvd.nist.gov

627

cve-2023-3824

php

stack buffer overflow

phar file

rce

memory corruption

nvd

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.8

Confidence

High

EPSS

0.001

Percentile

49.2%

JSON

In PHP version 8.0.* before 8.0.30, 8.1.* before 8.1.22, and 8.2.* before 8.2.8, when loading phar file, while reading PHAR directory entries, insufficient length checking may lead to a stack buffer overflow, leading potentially to memory corruption or RCE.

Affected configurations

Nvd

Node

phpphpRange8.0.0–8.0.30

phpphpRange8.1.0–8.1.22

phpphpRange8.2.0–8.2.9

Node

fedoraprojectfedoraMatch38

Node

debiandebian_linuxMatch10.0

VendorProductVersionCPE
phpphp*cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
fedoraprojectfedora38cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*
debiandebian_linux10.0cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
php	php	*	cpe:2.3:a:php:php::::::::
fedoraproject	fedora	38	cpe:2.3:o:fedoraproject:fedora:38:::::::*
debian	debian_linux	10.0	cpe:2.3:o:debian:debian_linux:10.0:::::::*

CNA Affected

[
  {
    "defaultStatus": "affected",
    "product": "PHP",
    "vendor": "PHP Group",
    "versions": [
      {
        "lessThan": "8.0.30",
        "status": "affected",
        "version": "8.0.*",
        "versionType": "semver"
      },
      {
        "lessThan": "8.1.22",
        "status": "affected",
        "version": "8.1.*",
        "versionType": "semver"
      },
      {
        "lessThan": "8.2.8",
        "status": "affected",
        "version": "8.2.*",
        "versionType": "semver"
      }
    ]
  }
]