mysqlnd/pdo password buffer overflow
CVE-2022-31626

7.5HIGH

Key Information:

Vendor: PHP Group
Status: PHP
Vendor: CVE Published:; 16 June 2022

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 14%

What is CVE-2022-31626?

In PHP versions 7.4.x below 7.4.30, 8.0.x below 8.0.20, and 8.1.x below 8.1.7, when pdo_mysql extension with mysqlnd driver, if the third party is allowed to supply host to connect to and the password for the connection, password of excessive length can trigger a buffer overflow in PHP, which can lead to a remote code execution vulnerability.

Affected Version(s)

PHP 7.4.X < 7.4.30

PHP 8.0.X < 8.0.20

PHP 8.1.X < 8.1.7

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2022-31626
Created by amitlttwo

References

https://bugs.php.net/bug.php?id=81719

https://lists.fedoraproject.org/archives/list/package-ann...

vendor-advisory

https://lists.fedoraproject.org/archives/list/package-ann...

vendor-advisory

EPSS Score

14% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

🟡
Public PoC available
Dec 6, 2022
👾
Exploit known to exist
Dec 6, 2022
Vulnerability published
Jun 16, 2022
Vulnerability Reserved
May 25, 2022

Credit

c dot fol at ambionics dot io

PHP Group

Badges

What is CVE-2022-31626?

Affected Version(s)

Exploit Proof of Concept (PoC)

References

EPSS Score

CVSS V3.1

Timeline

Credit