Description

In PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before 8.3.14, due to an error inĀ convert.quoted-printable-decode filter certain data can lead to buffer overread by one byte, which can in certain circumstances lead to crashes or disclose content of other memory areas.

INFO

Published Date :

2024-11-24T01:08:28.663Z

Last Modified :

2025-11-03T21:51:48.654Z

Source :

php
AFFECTED PRODUCTS

The following products are affected by CVE-2024-11233 vulnerability.

Vendors Products
Php
  • Php
Php Group
  • Php
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-11233.

URL Resource
https://github.com/php/php-src/security/advisories/GHSA-r977-prxv-hc43 cve-icon cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2024/12/msg00007.html cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2024-11233 cve-icon
https://security.netapp.com/advisory/ntap-20241220-0008/ cve-icon
https://www.cve.org/CVERecord?id=CVE-2024-11233 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact