PT-2023-31510 · Php+1 · Php+1

Cod3Beat

Publicado

2023-12-12

Atualizado

2024-03-20

CVE-2023-50252

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions php-svg-lib versions prior to 0.5.1

Description The issue arises when handling <use> tags that reference <image> tags, as it merges attributes from the <use> tag to the <image> tag. This is particularly problematic when the href attribute from the <use> tag has not been sanitized, leading to an unsafe file read. This can cause a PHAR Deserialization issue in PHP prior to version 8.

Recommendations For versions prior to 0.5.1, update to version 0.5.1 to resolve the issue. As a temporary workaround, consider sanitizing the href attribute from the <use> tag to prevent unsafe file reads.

Exploit

Correção

Deserialization of Untrusted Data

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-502CWE-15

Identificadores relacionados

CVE-2023-50252

DSA-5642-1

GHSA-JQ98-9543-M4CR

Produtos afetados

Php

Php-Svg-Lib

PT-2023-31510 · Php+1 · Php+1

CVE-2023-50252

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 9