CVE-2025-14178 | PHP up to 8.1.33/8.2.29/8.3.28/8.4.15/8.5.0 array_merge out-of-bounds write

Inserito da Angelo Barbosa | Dic 27, 2025 | CVE

A vulnerability was found in PHP up to 8.1.33/8.2.29/8.3.28/8.4.15/8.5.0. It has been rated as critical. Impacted is the function array_merge. Performing manipulation results in out-of-bounds write.

This vulnerability is identified as CVE-2025-14178. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is advised.

CVE-2025-14178 | PHP up to 8.1.33/8.2.29/8.3.28/8.4.15/8.5.0 array_merge out-of-bounds write

Post correlati

CVE-2025-2061 | code-projects Online Ticket Reservation System 1.0 /passenger.php name cross site scripting

CVE-2025-0197 | code-projects Point of Sales and Inventory Management System 1.0 /user/search.php name sql injection

CVE-2025-10953 | UTT 1200GW/1250GW up to 3.0.0-170831/3.2.2-200710 /goform/formApMail senderEmail buffer overflow

CVE-2024-6649 | SourceCodester Employee and Visitor Gate Pass Logging System 1.0 Users.php save_users cross-site request forgery