Vulnerabilities
Projects
Vulnerability Disclosure
About Us
Contact Us
Mend.io Vulnerability Database
What is a WS vulnerability ID?
What is an MSC vulnerability ID?
We found results for “”
CVE-2023-49316
Good to know:
Date: November 26, 2023
In Math/BinaryField.php in phpseclib 3 before 3.0.34, excessively large degrees can lead to a denial of service.
Language: PHP
Severity Score
Related Resources (7)
Severity Score
Top Fix
Upgrade Version
Upgrade to version alterindonesia/procurex - v0.1.0;alterindonesia/procurex - dev-fix-rest-controller-detail;triwinvendor/amqp - 1.0.2;wpcloud/wp-stateless - 3.4.0;wpcloud/wp-stateless - dev-multisite;wpcloud/wp-stateless - 3.0.1;wpcloud/wp-stateless - dev-develop-alim;wpcloud/wp-stateless - 4.0.1;rdn/phpseclib - 0.3.0;rdn/phpseclib - no_fix;nitsan/ns-googledocs - no_fix;nitsan/ns-googledocs - dev-master;limesurvey/limesurvey - 6.4.4+240130;limesurvey/limesurvey - dev-detached2;limesurvey/limesurvey - dev-dependabot/npm_and_yarn/assets/packages/lstutorial/loader-utils-2.0.3;limesurvey/limesurvey - 5.0.0+210526;limesurvey/limesurvey - 5.3.7+220328;limesurvey/limesurvey - dev-bug/19550-fix-get-class-wihout-arguments;limesurvey/limesurvey - dev-install-command-rpc;limesurvey/limesurvey - dev-findfix6;limesurvey/limesurvey - 5.3.26+220720;limesurvey/limesurvey - 2.2.5;limesurvey/limesurvey - dev-dependabot/npm_and_yarn/assets/packages/lstutorial/terser-5.14.2;limesurvey/limesurvey - dev-fix-spss-token-length;limesurvey/limesurvey - dev-master-innodb;wwbn/avideo - dev-dependabot/npm_and_yarn/tinymce-6.5.1;wwbn/avideo - 14.3;wwbn/avideo - dev-dependabot/composer/aws/aws-sdk-php-3.300.14;wwbn/avideo - dev-akhilleusuggo-patch-6;wwbn/avideo - dev-dependabot/composer/abraham/twitteroauth-3.1.0;wwbn/avideo - 11;wwbn/avideo - dev-dependabot/composer/monolog/monolog-2.6.0;wwbn/avideo - dev-dependabot/composer/google/apiclient-services-0.249.0;wwbn/avideo - dev-akhilleusuggo-patch-8;wwbn/avideo - dev-dependabot/composer/ratchet/pawl-0.4.1;wwbn/avideo - dev-master;wwbn/avideo - dev-akhilleusuggo-patch-3;wwbn/avideo - dev-dependabot/composer/google/auth-1.21.0;wwbn/avideo - dev-julzxcapz;wwbn/avideo - dev-julzxcapz-wwbn-plugin-update;helsingborg-stad/api-alarm-manager - 1.2.4;helsingborg-stad/api-alarm-manager - 2.0.1;helsingborg-stad/api-alarm-manager - dev-master;helsingborg-stad/api-alarm-manager - dev-develop;helsingborg-stad/api-alarm-manager - dev-chore/workflow-names;helsingborg-stad/api-alarm-manager - dev-dependabot/composer/phpseclib/phpseclib-3.0.36;helsingborg-stad/api-alarm-manager - dev-feat/support-sftp-CU-865bkuxzh;phpseclib/phpseclib - 0.1.0;phpseclib/phpseclib - 3.0.34;liamdennehy/phpseclib - no_fix;liamdennehy/phpseclib - 0.3.0;newcool/growtype-form - v1.3.9.3;bmcfarlin/fiserv-php-sdk - no_fix;campusdigital/campuscms - no_fix;irvan/opensid - dev-patch-6;irvan/opensid - no_fix;irvan/opensid - dev-patch-1;irvan/opensid - dev-patch-11;xiaosongshu/fasterphpweb - v5.3.0;xiaosongshu/fasterphpweb - dev-yii;xiaosongshu/fasterphpweb - dev-master;shellrent/phpseclib - 3.0.11;newcool/growtype-wc - no_fix;windfallapps/windfallapps-php - no_fix;phuongna/rabbitmq - 1.1.9;phhung1901/google_one_tap - v1.1.3;service/payment - no_fix;leanxcale/laravel-leanxcale-pdo-odbc - v0.0.1;wmwgijol28/laravel-queue-rabbitmq - no_fix;perigiweb/slims9_bulian - no_fix;cinexpert/phpseclib - no_fix;apiki/mainwp-child - 6.2.0;eset/phpseclib - 3.0.2;jorgeuos/simple-sftp - no_fix;juanelosrock/librerias-pdf-php74 - no_fix;openclassify/openclassify - dev-master;openclassify/openclassify - dev-mostafamoradi;vesen/vesen-backoffice - no_fix;vrnvgasu/phpseclib - 0.3.0;vrnvgasu/phpseclib - no_fix;esl/eslprice - no_fix;zsgogo/otpless-auth-sdk - v0.0.2;kat/batch-framework - no_fix;wp-seopress/wp-seopress - no_fix
CVSS v3.1
| Base Score: |
|
|---|---|
| Attack Vector (AV): | NETWORK |
| Attack Complexity (AC): | LOW |
| Privileges Required (PR): | NONE |
| User Interaction (UI): | NONE |
| Scope (S): | UNCHANGED |
| Confidentiality (C): | NONE |
| Integrity (I): | NONE |
| Availability (A): | HIGH |