Description

In PHP versions 7.3.x below 7.3.15 and 7.4.x below 7.4.3, while extracting PHAR files on Windows using phar extension, certain content inside PHAR file could lead to one-byte read past the allocated buffer. This could potentially lead to information disclosure or crash.

Remediation

References

CVE-2020-7061

Related Vulnerabilities

WordPress Plugin WP to Twitter Cross-Site Scripting (3.0.5)

WordPress Plugin Web Invoice-Invoicing and billing for WordPress Multiple SQL Injection Vulnerabilities (2.1.3)

Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2018-1133)

Jetty Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2021-28163)

Apache HTTP Server Out-of-bounds Write Vulnerability (CVE-2021-39275)

Severity

Critical

Classification

CVE-2020-7061 CWE-125 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Tags

Missing Update Known Vulnerabilities