PHP Phar Uncompressor Quine Infinite Loop before 7.4.31/8.0.24/8.1.11
CVE-2022-31628 Published on September 28, 2022

phar wrapper can occur dos when using quine gzip file
In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress "quines" gzip files, resulting in an infinite loop.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Vulnerability Analysis

CVE-2022-31628 is exploitable with local system access, and requires user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a small impact on availability.

Attack Vector:
LOCAL
Attack Complexity:
LOW
Privileges Required:
HIGH
User Interaction:
NONE
Scope:
UNCHANGED
Confidentiality Impact:
NONE
Integrity Impact:
NONE
Availability Impact:
LOW

Weakness Type

What is a Stack Exhaustion Vulnerability?

The product does not properly control the amount of recursion which takes place, consuming excessive resources, such as allocated memory or the program stack.

CVE-2022-31628 has been classified to as a Stack Exhaustion vulnerability or weakness.


Products Associated with CVE-2022-31628

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2022-31628 are published in these products:

PHP
 
Fedora Project Fedora
 
Canonical Ubuntu Linux
 
Debian Linux
 

Affected Versions

PHP Group PHP:

Exploit Probability

EPSS
0.04%
Percentile
13.26%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.