Description
In PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before 8.3.14, due to an error in convert.quoted-printable-decode filter certain data can lead to buffer overread by one byte, which can in certain circumstances lead to crashes or disclose content of other memory areas.
Remediation
References
Related Vulnerabilities
Craft CMS Files or Directories Accessible to External Parties Vulnerability (CVE-2024-52292)
Drupal Core 9.0.x Cross-Site Request Forgery (9.0.0 - 9.0.14)
Oracle JRE CVE-2020-14796 Vulnerability (CVE-2020-14796)
Oracle JRE CVE-2023-21930 Vulnerability (CVE-2023-21930)
WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2022-23307)