admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 09:11:28 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2024/CVE-2024-27xx/CVE-2024-2757.json
cad-safe-bot 44c903429f Auto-Update: 2024-07-03T02:00:33.205262+00:00
2024-07-03 02:03:28 +00:00

68 lines
2.2 KiB
JSON
Raw Blame History

{
"id": "CVE-2024-2757",
"sourceIdentifier": "security@php.net",
"published": "2024-04-29T04:15:08.113",
"lastModified": "2024-07-03T01:53:32.100",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In PHP 8.3.* before 8.3.5, function\u00a0mb_encode_mimeheader() runs endlessly for some inputs that contain long strings of non-space characters followed by a space. This could lead to a potential DoS attack if a hostile user sends data to an application that uses this function.\u00a0\n\n"
},
{
"lang": "es",
"value": "En PHP 8.3.* anterior a 8.3.5, la funci\u00f3n mb_encode_mimeheader() se ejecuta sin cesar para algunas entradas que contienen cadenas largas de caracteres que no son espacios seguidos de un espacio. Esto podr\u00eda provocar un posible ataque DoS si un usuario hostil env\u00eda datos a una aplicaci\u00f3n que utiliza esta funci\u00f3n."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "security@php.net",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
]
},
"weaknesses": [
{
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-400"
}
]
}
],
"references": [
{
"url": "http://www.openwall.com/lists/oss-security/2024/04/12/11",
"source": "security@php.net"
},
{
"url": "https://github.com/php/php-src/security/advisories/GHSA-fjp9-9hwx-59fq",
"source": "security@php.net"
},
{
"url": "https://security.netapp.com/advisory/ntap-20240510-0011/",
"source": "security@php.net"
}
]
}
Reference in New Issue View Git Blame Copy Permalink