CVE-2024-5585 | PHP up to 8.1.28/8.2.19/8.3.7 Trailing Space proc_open argument injection

Inserito da Angelo Barbosa | Giu 9, 2024 | CVE

A vulnerability was found in PHP up to 8.1.28/8.2.19/8.3.7. It has been declared as critical. Affected by this vulnerability is the function proc_open of the component Trailing Space Handler. The manipulation leads to argument injection.

This vulnerability is known as CVE-2024-5585. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-5585 | PHP up to 8.1.28/8.2.19/8.3.7 Trailing Space proc_open argument injection

Post correlati

CVE-2024-32036 | SixLabors ImageSharp up to 2.1.7/3.1.3 JPEG Handler/TGA use after free (GHSA-5x7m-6737-26cr)

CVE-2024-40952 | Linux Kernel up to 6.6.35/6.9.6 ocfs2_journal_dirty null pointer dereference (0550ad87711f/72663d3e0909/58f7e1e2c9e7)

CVE-2024-33516 | Aruba ArubaOS up to 8.10.0.10/8.11.2.1/10.4.1.0/10.5.1.0 Auth Service denial of service (ARUBA-PSA-2024-004)

CVE-2023-48355 | Unisoc S8000 JPG Driver out-of-bounds write