CVE-2024-11236 | PHP up to 8.1.30/8.2.25/8.3.13 on 32-bit ldap_escape out-of-bounds write (GHSA-5hqh-c84r-qjcv)

Inserito da Angelo Barbosa | Nov 24, 2024 | CVE

A vulnerability classified as very critical has been found in PHP up to 8.1.30/8.2.25/8.3.13 on 32-bit. Affected is the function ldap_escape. The manipulation leads to out-of-bounds write.

This vulnerability is traded as CVE-2024-11236. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-11236 | PHP up to 8.1.30/8.2.25/8.3.13 on 32-bit ldap_escape out-of-bounds write (GHSA-5hqh-c84r-qjcv)

Post correlati

CVE-2023-50718 | NocoDB up to 0.202.9 table_name sql injection

CVE-2023-49646 | Zoom Desktop Client/Mobile App/VDI Client/SDK improper authentication

CVE-2024-28094 | Schoolbox up to 23.1.2 Chat sql injection

CVE-2024-35888 | Linux Kernel up to 6.8.4 erspan include/linux/skbuff.h ip6erspan_rcv information disclosure