CVE-2023-3824
Buffer overflow and overread in phar_dir_read()In PHP version 8.0.* before 8.0.30, 8.1.* before 8.1.22, and 8.2.* before 8.2.8, when loading phar file, while reading PHAR directory entries, insufficient length checking may lead to a stack buffer overflow, leading potentially to memory corruption or RCE.
We have discovered 1,089,606 live websites that are affected by CVE-2023-3824.
Contact us to get more info
Affected Software
| |
---|
Product | PHP |
Category | Programming Languages |
Vulnerable Versions | - from 8 before 8.0.30
- from 8.1 before 8.1.22
- from 8.2 before 8.2.8
|
Total Vulnerable Versions | 507 |
Vulnerable Domains | 1,089,606 live websites (9.01% of PHP install base) |
Common Weakness Enumeration
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
Distribution by Website Rank
The diagram provides a graphic representation of the correlation between the occurrence of CVE-2023-3824 and the relative popularity of websites