CVE-2023-3247: 
PHP vulnerability analysis and mitigation

CVE-2023-3247 affects PHP versions 8.0.* before 8.0.29, 8.1.* before 8.1.20, and 8.2.* before 8.2.7. The vulnerability is related to SOAP HTTP Digest Authentication, where the random value generator was not checked for failure and used a narrower range of values than intended (PHP Advisory, NVD).

The vulnerability stems from a missing error check in the random byte generation function used in the SOAP HTTP Digest authentication code. Additionally, there was an insufficient number of random bytes used in the implementation. The random value generator was using only 31 bits of randomness, which was significantly less than required for secure operation (PHP Advisory). The vulnerability has been assigned a CVSS v3.1 base score of 4.3 (Medium) by NVD (NVD).

The vulnerability can lead to two primary security issues: first, it could result in the disclosure of 31 bits of uninitialized memory from the client to the server. Second, it made it easier for a malicious server to guess the client's nonce. The small size of the client nonce (cnonce) could cause the server to erroneously reject requests due to repeated (cnonce, nc) pairs (PHP Advisory).

The vulnerability has been patched in PHP versions 8.0.29, 8.1.20, and 8.2.7. The fix includes increasing the nonce size and implementing proper checking of the return value of php_random_bytes_throw(). Users should upgrade to these patched versions or later to mitigate the vulnerability (PHP Advisory).