CVE-2025-1861

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-1861
In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when parsing HTTP redirect in the response to an HTTP request, there is currently limit on the location value size caused by limited size of the location buffer to 1024. However as per RFC9110, the limit is recommended to be 8000. This may lead to incorrect URL truncation and redirecting to a wrong location.

9.8 /10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://github.com/php/php-src/security/advisories/GHSA-52jp-hrpf-2jff Vendor Advisory
https://lists.debian.org/debian-lts-announce/2025/03/msg00014.html
https://security.netapp.com/advisory/ntap-20250523-0005/ Third Party Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:netapp:ontap:9:*:*:*:*:*:*:*
History

03 Nov 2025, 21:18

Type Values Removed Values Added
References
  • () https://lists.debian.org/debian-lts-announce/2025/03/msg00014.html -

02 Jul 2025, 20:17

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 9.8
First Time Php
Netapp ontap
Netapp
Php php
CPE cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
cpe:2.3:a:netapp:ontap:9:*:*:*:*:*:*:*
References
  • () https://security.netapp.com/advisory/ntap-20250523-0005/ - Third Party Advisory
References () https://github.com/php/php-src/security/advisories/GHSA-52jp-hrpf-2jff - () https://github.com/php/php-src/security/advisories/GHSA-52jp-hrpf-2jff - Vendor Advisory

01 Apr 2025, 20:26

Type Values Removed Values Added
Summary
  • (es) En PHP desde 8.1.* antes de 8.1.32, desde 8.2.* antes de 8.2.28, desde 8.3.* antes de 8.3.19, desde 8.4.* antes de 8.4.5, al analizar la redirección HTTP en la respuesta a una solicitud HTTP, actualmente hay un límite en el tamaño del valor de ubicación debido al tamaño limitado del búfer de ubicación a 1024. Sin embargo, según RFC9110, se recomienda que el límite sea 8000. Esto puede provocar un truncamiento incorrecto de la URL y la redirección a una ubicación incorrecta.

30 Mar 2025, 06:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-03-30 06:15

Updated : 2025-11-03 21:18

NVD link : CVE-2025-1861

Mitre link : CVE-2025-1861

CVE.ORG link : CVE-2025-1861

JSON object : View

Products Affected

netapp

  • ontap

php

  • php
CWE
CWE-131

Incorrect Calculation of Buffer Size