In PHP versions 8.1.* before 8.1.34, 8.2.* before 8.2.30, 8.3.* before 8.3.29, 8.4.* before 8.4.16, 8.5.* before 8.5.1 when using the PDO PostgreSQL driver with PDO::ATTR_EMULATE_PREPARES enabled, an invalid character sequence (such as \x99) in a prepared statement parameter may cause the quoting function PQescapeStringConn to return NULL, leading to a null pointer dereference in pdo_parse_params() function. This may lead to crashes (segmentation fault) and affect the availability of the target server.
Attack Parameters
Attack Vector
Network
Can be exploited remotely
Attack Complexity
High
Difficult to exploit
Attack Requirements
Present
Additional conditions required
Privileges Required
None
No privileges needed
User Interaction
None
No user interaction needed
Impact Assessment
Confidentiality
None
No data leak
Integrity
None
No data modification
Availability
High
Complete denial of service
CVSS Vector v4.0
Weakness Type (CWE)
Vulnerable Products 5
| Configuration | From (including) | Up to (excluding) |
|---|---|---|
|
Php Php
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
|
8.1.0
|
8.1.34
|
|
Php Php
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
|
8.2.0
|
8.2.30
|
|
Php Php
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
|
8.3.0
|
8.3.29
|
|
Php Php
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
|
8.4.0
|
8.4.16
|
|
Php Php
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
|
8.5.0
|
8.5.1
|