WEB APPLICATION VULNERABILITIES Standard & Premium

PHP Uncontrolled Resource Consumption Vulnerability (CVE-2023-0662)

Description

In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, excessive number of parts in HTTP form upload can cause high resource consumption and excessive number of log entries. This can cause denial of service on the affected server by exhausting CPU resources or disk space.

Remediation

References

Related Vulnerabilities

WordPress Plugin Estatik Real Estate Arbitrary File Upload (2.2.5)

WordPress Plugin 123devis-affiliation Cross-Site Scripting (1.0.4)

MySQL CVE-2022-21368 Vulnerability (CVE-2022-21368)

WordPress Plugin Daily Prayer Time Cross-Site Scripting (2021.08.07)

WordPress Plugin Lightbox Gallery Cross-Site Scripting (0.9.4)

Severity

High

Classification

CVE-2023-0662 CWE-400 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Tags

Missing Update Known Vulnerabilities