ELS for OS
- CVEs
- Releases
- Projects
- Documentation
Live Patches
- CVEs
- Documentation
ELS for Languages
- CVEs
- Releases
- Projects
- Documentation

CVE-2023-0662

Updated: 2023-11-04 21:04:00.840974

Description:

In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, excessive number of parts in HTTP form upload can cause high resource consumption and excessive number of log entries. This can cause denial of service on the affected server by exhausting CPU resources or disk space.

Links	NIST	CIRCL	RHEL	Ubuntu

Severity

	Severity	Score
CVSS Version 2.x		0
CVSS Version 3.x	HIGH	7.5

Status

OS name	Project name	Version	Score	Severity	Status	Errata	Last updated
Ubuntu 20.04 PHP	php	7.1	7.5	HIGH	Released	CLSA-2023:1680621038	2023-04-04 14:02:53
Ubuntu 20.04 PHP	php	7.2	7.5	HIGH	Released	CLSA-2023:1680617385	2023-04-04 11:02:52
Ubuntu 20.04 PHP	php	7.4	7.5	HIGH	Released	CLSA-2023:1680618266	2023-04-04 11:02:51
Ubuntu 20.04 PHP	php	5.6	7.5	HIGH	Released	CLSA-2023:1680619410	2023-04-04 11:02:52
Ubuntu 20.04 PHP	php	7.3	7.5	HIGH	Released	CLSA-2023:1680618977	2023-04-04 11:02:51
Ubuntu 20.04 PHP	php	8.1	7.5	HIGH	Not Vulnerable		2023-03-22 14:02:45
Ubuntu 20.04 PHP	php	8.2	7.5	HIGH	Not Vulnerable		2023-03-22 14:02:30
Ubuntu 20.04 PHP	php	8.0	7.5	HIGH	Not Vulnerable		2023-03-22 14:02:45
Ubuntu 22.04 PHP	php	7.2	7.5	HIGH	Released	CLSA-2023:1680617518	2023-04-04 11:02:51
Ubuntu 22.04 PHP	php	7.0	7.5	HIGH	Released	CLSA-2023:1680615865	2023-04-04 11:02:51

Total: 86