CVE-2023-0567

CWE-916CWE-3289 documents7 sources
Severity
6.2MEDIUM
EPSS
0.1%
top 82.39%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
PHP Group PHPPHP PHP
Timeline
PublishedMar 1
Latest updateMay 2

Description

In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, password_verify() function may accept some invalid Blowfish hashes as valid. If such invalid hash ever ends up in the password database, it may lead to an application allowing any password for this entry as valid.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:NExploitability: 2.5 | Impact: 5.2

Affected Packages7 packages

NVDphp/php8.0.08.0.28+2
CVEListV5php_group/php8.0.x8.0.28+2
Debianphp7.4< 7.4.33-1+deb11u3
Debianphp8.2< 8.2.4-1
Ubuntuphp7.2< 7.2.24-0ubuntu0.18.04.17

🔴Vulnerability Details

3
OSV
CVE-2023-0567: In PHP 82023-03-01
OSV
php7.2, php7.4, php8.1 vulnerabilities2023-02-28
CVEList
password_verify() always returns true for some invalid hashes2023-02-16

📋Vendor Advisories

5
Ubuntu
PHP vulnerability2023-05-02
Ubuntu
PHP vulnerabilities2023-02-28
Red Hat
php: Password_verify() always return true with some hash2023-02-15
Microsoft
password_verify() always returns true for some invalid hashes2023-02-14
Debian
CVE-2023-0567: php7.4 - In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, password...2023
CVE-2023-0567 (MEDIUM CVSS 6.2) | In PHP 8.0.X before 8.0.28 | cvebase.io