Vulnerability identifier: #VU60707

Vulnerability risk: Medium

CVSSv3.1: 4.8 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C]

CVE-ID: CVE-2021-21708

CWE-ID: CWE-416

Exploitation vector: Network

Exploits in database: 1

• February 18, 2022
  • php 7.4.27 and 8.0.15 (tested) sigsegv on server while validating user-input through filter_var() [Github]

Impact: Denial of service

Vulnerable software:
PHP
Universal components / Libraries / Scripting languages

Vendor: PHP Group