Vulnerabilities > CVE-2022-4900 - Out-of-bounds Write vulnerability in PHP 7.4.0/8.0.0/8.1.0

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
php
CWE-787

Summary

A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow.

Common Weakness Enumeration (CWE)