Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
OOB access in ldap_escape
Vulnerability Description
In PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before 8.3.14, uncontrolled long string inputs to ldap_escape() function on 32-bit systems can cause an integer overflow, resulting in an out-of-bounds write.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
跨界内存写
Vulnerability Title
PHP 安全漏洞
Vulnerability Description
PHP是PHP的一种在服务器端执行的脚本语言。 PHP存在安全漏洞。攻击者利用该漏洞可以向ldap_escape函数输入不受控制的长字符串会引起整数溢出,从而导致越界写入。以下版本受到影响:8.1.*版本至8.1.31之前版本、8.2.*版本至8.2.26之前版本和8.3.*版本至8.3.14之前版本。
CVSS Information
N/A
Vulnerability Type
N/A