cve/2023/CVE-2023-3824.md

CVE-2023-3824

Description

In PHP version 8.0.* before 8.0.30,  8.1.* before 8.1.22, and 8.2.* before 8.2.8, when loading phar file, while reading PHAR directory entries, insufficient length checking may lead to a stack buffer overflow, leading potentially to memory corruption or RCE. 

POC

Reference

• https://github.com/php/php-src/security/advisories/GHSA-jqcx-ccgc-xwhv

Github

• https://github.com/IamdLite/lockbit-message-fbi
• https://github.com/NewLockBit/CVE-2023-3824-PHP-to-RCE
• https://github.com/NewLockBit/CVE-2023-3824-PHP-to-RCE-LockBit-LEAK
• https://github.com/NewLockBit/CVE-2023-3824-PHP-to-RCE-National-Crime-AgencyLEAK
• https://github.com/NewLockBit/Research-of-CVE-2023-3824-NCA-Lockbit
• https://github.com/Nfttkcauzy/CVE-2023-3824-PHP-to-RCE-LockBit-LEAK
• https://github.com/Nuki2u/CVE-2023-3824-PHP-to-RCE-LockBit-LEAK
• https://github.com/Starla2u/CVE-2023-3824-PHP-to-RCE-LockBit-LEAK
• https://github.com/StayBeautiful-collab/CVE-2023-3824-PHP-to-RCE-LockBit-LEAK
• https://github.com/fkie-cad/nvd-json-data-feeds
• https://github.com/jhonnybonny/CVE-2023-3824
• https://github.com/nomi-sec/PoC-in-GitHub