CVE-2016-10712

Source
https://nvd.nist.gov/vuln/detail/CVE-2016-10712
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-10712.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2016-10712
Related
Published
2018-02-09T06:29:00Z
Modified
2024-05-30T00:09:06Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N CVSS Calculator
Summary
[none]
Details

In PHP before 5.5.32, 5.6.x before 5.6.18, and 7.x before 7.0.3, all of the return values of streamgetmetadata can be controlled if the input can be controlled (e.g., during file uploads). For example, a "$uri = streamgetmetadata(fopen($file, "r"))['uri']" call mishandles the case where $file is data:text/plain;uri=eviluri, -- in other words, metadata can be set by an attacker.

References

Affected packages

Git / github.com/php/php-src