Description

In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, excessive number of parts in HTTP form upload can cause high resource consumption and excessive number of log entries. This can cause denial of service on the affected server by exhausting CPU resources or disk space. 

Remediation

References

CVE-2023-0662

Related Vulnerabilities

WordPress Plugin Keep Backup Daily Cross-Site Scripting (2.0.2)

Atlassian Jira CVE-2021-39122 Vulnerability (CVE-2021-39122)

Oracle JRE CVE-2013-2414 Vulnerability (CVE-2013-2414)

Drupal Deserialization of Untrusted Data Vulnerability (CVE-2019-6340)

WordPress Plugin Pinpoint Booking System-#1 WordPress Booking SQL Injection (2.0)

Severity

High

Classification

CVE-2023-0662 CWE-400 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L

Tags

Missing Update Known Vulnerabilities