Primary

Context

PHP Integer Overflow Vulnerability in ldap_escape() Function on 32-bit Systems Allowing Out-of-Bounds Write

Vulnerability

Patched

In PHP versions 8.1 prior to 8.1.31, 8.2 prior to 8.2.26, and 8.3 prior to 8.3.14, an integer overflow vulnerability has been identified in the ldap_escape() function. This issue arises on 32-bit systems, where uncontrolled long string inputs can lead to an overflow, causing an out-of-bounds write. The vulnerability is particularly exploitable in PHP's Firebird and DBLIB drivers, where similar integer overflow issues have been introduced by unquoted string handling, allowing for out-of-bounds writes as well.

Impact

Exploitation of this vulnerability causes an integer overflow, leading to an out-of-bounds write. This type of memory corruption can often be exploited to execute arbitrary code or cause a denial-of-service condition by crashing the application.

Remediation

Users can upgrade to PHP versions 8.1.31, 8.2.26, or 8.3.14 to address this vulnerability.

Added: May 15, 2026, 11:54 AM

Updated: May 15, 2026, 11:54 AM

Vulnerability Rating

Custom Algorithm

spread

9.4

impact

0.6

exploitability

8.5

remediation

7.7

relevance

0.0

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.4

impact

0.6

exploitability

8.5

remediation

7.7

relevance

0.0

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

PHP Integer Overflow Vulnerability in ldap_escape() Function on 32-bit Systems Allowing Out-of-Bounds Write

Vulnerability

Impact

Remediation

Affected Products

PHP

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating