PHP Versions Before 8.3.14 Vulnerable to MySQL Server Attack
CVE-2024-8929
5.8MEDIUM
What is CVE-2024-8929?
A vulnerability has been identified in specific versions of PHP where a malicious MySQL server can exploit the client, leading to the disclosure of heap memory content. This flaw poses a risk as it may reveal data from prior SQL requests and potentially sensitive information belonging to other users sharing the same server environment. Immediate attention and remediation are advisable for affected versions to safeguard user data and maintain system integrity.
Affected Version(s)
PHP 8.1.*
PHP 8.1.* < 8.1.31
PHP 8.2.* < 8.2.24