CVE-2025-6491

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-6491
In PHP versions:8.1.* before 8.1.33, 8.2.* before 8.2.29, 8.3.* before 8.3.23, 8.4.* before 8.4.10 when parsing XML data in SOAP extensions, overly large (>2Gb) XML namespace prefix may lead to null pointer dereference. This may lead to crashes and affect the availability of the target server.

5.9 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.2 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://github.com/php/php-src/security/advisories/GHSA-453j-q27h-5p8x Exploit Vendor Advisory
http://www.openwall.com/lists/oss-security/2025/07/11/4
https://lists.debian.org/debian-lts-announce/2025/07/msg00017.html
https://github.com/php/php-src/security/advisories/GHSA-453j-q27h-5p8x Exploit Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
History

04 Nov 2025, 22:16

Type Values Removed Values Added
References
  • () http://www.openwall.com/lists/oss-security/2025/07/11/4 -

03 Nov 2025, 20:19

Type Values Removed Values Added
References
  • () https://lists.debian.org/debian-lts-announce/2025/07/msg00017.html -

22 Jul 2025, 16:51

Type Values Removed Values Added
References () https://github.com/php/php-src/security/advisories/GHSA-453j-q27h-5p8x - () https://github.com/php/php-src/security/advisories/GHSA-453j-q27h-5p8x - Exploit, Vendor Advisory
CPE cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
First Time Php
Php php

14 Jul 2025, 16:15

Type Values Removed Values Added
References () https://github.com/php/php-src/security/advisories/GHSA-453j-q27h-5p8x - () https://github.com/php/php-src/security/advisories/GHSA-453j-q27h-5p8x -
Summary
  • (es) En las versiones de PHP 8.1.* anteriores a la 8.1.33, 8.2.* anteriores a la 8.2.29, 8.3.* anteriores a la 8.3.23 y 8.4.* anteriores a la 8.4.10, al analizar datos XML en extensiones SOAP, un prefijo de espacio de nombres XML demasiado grande (>2 GB) puede provocar la desreferencia de puntero nulo. Esto puede provocar fallos y afectar la disponibilidad del servidor de destino.

13 Jul 2025, 22:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-07-13 22:15

Updated : 2025-11-04 22:16

NVD link : CVE-2025-6491

Mitre link : CVE-2025-6491

CVE.ORG link : CVE-2025-6491

JSON object : View

Products Affected

php

  • php
CWE
CWE-476

NULL Pointer Dereference