PHP PHP : Security vulnerabilities, CVEs memory corruption published in 2022

CVE-2022-31627

In PHP versions 8.1.x below 8.1.8, when fileinfo functions, such as finfo_buffer, due to incorrect patch applied to the third party code from libmagic, incorrect function may be used to free allocated memory, which may lead to heap corruption.

Max CVSS

9.8

EPSS Score

0.24%

Published

2022-07-28

Updated

2022-10-25

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

PHP » PHP : Security Vulnerabilities, CVEs, Published In 2022 (Memory corruption) CVSS score >= 8

CVE-2022-31627