VDB
CVE-2026-7568
CVE-2026-7568
PUBLISHED
CVSS 6.300000190734863 MEDIUM
In PHP versions 8.2.* before 8.2.31, 8.3.* before 8.3.31, 8.4.* before 8.4.21, and 8.5.* before 8.5.6, the metaphone() function in ext/standard/metaphone.c uses a signed int variable to track the current position within the input string. If a string longer than 2,147,483,647 bytes is passed, a signed integer overflow occurs, resulting in undefined behavior. This can lead to an out-of-bounds read, causing a segmentation fault or access to unrelated memory, and may affect the availability of the PHP process.
EPSS 0.05% · 17.6th percentile
Risk Scores
CVSS v4.0
6.300000190734863
CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L/RE:L/U:Amber
EPSS Score
0.05%
17.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| PHP Group | PHP | 8.2.*, 8.3.*, * |
Timeline
- May 8, 2026 PoC Published
- May 8, 2026 PoC Published
- May 10, 2026 EPSS Score
- May 10, 2026 CVE Published
- May 11, 2026 Security Advisory
- May 12, 2026 CVE Updated
- May 18, 2026 EPSS Score
- May 19, 2026 EPSS Score
- May 20, 2026 EPSS Score
- May 21, 2026 EPSS Score
- May 22, 2026 EPSS Score
- May 23, 2026 EPSS Score