CVE-2024-11234

HIGH EPSS 62.4%

Published Nov 24, 20241y ago · Modified Jun 17, 20261w ago

7.2 CVSS 3.1

High

Published Nov 24, 2024 1y ago

Last Modified Jun 17, 2026 1w ago

Description

In PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before 8.3.14, when using streams with configured proxy and "request_fulluri" option, the URI is not properly sanitized which can lead to HTTP request smuggling and allow the attacker to use the proxy to perform arbitrary HTTP requests originating from the server, thus potentially gaining access to resources not normally available to the external user.

CVSS Details

Base Score

7.2

Exploitability

3.9

Impact

2.7

Vector string

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N

Attack Vector Network

Attack Complexity Low

Privileges Required None

User Interaction None

Scope Changed

Confidentiality Low

Integrity Low

Availability None

Threat Intelligence

EPSS Exploit Probability

62.4% percentile

Exploit & Patch Status

Public Exploit Known

No Patch Available

Weaknesses 2

CWE-20 Improper Input Validation Validation

CWE-74

Affected Products 3

Vendor	Product	Version	Range
php	php	*	≥8.1.0 – <8.1.31
php	php	*	≥8.2.0 – <8.2.26
php	php	*	≥8.3.0 – <8.3.14

References 3

github.com https://github.com/php/php-src/security/advisories/GHSA-c5f2-jwm7-mmq2

ExploitThird Party Advisory
lists.debian.org https://lists.debian.org/debian-lts-announce/2024/12/msg00007.html
security.netapp.com https://security.netapp.com/advisory/ntap-20241220-0008/

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.