The host is installed with PHP 8.0.x before 8.0.28, 8.1.x before 8.1.16, or 8.2.x before 8.2.3 and is prone to a privilege escalation vulnerability. A flaw is present in the application, which fails to handle an issue in the core path resolution function that allocate buffer one byte too small. Successful exploitation could allow attackers to lead to the byte after the allocated buffer being overwritten with NUL value, which might lead to unauthorized data access or modification.