CVE-2015-4147

2015-06-0918:59:00

CWE-19

[email protected]

web.nvd.nist.gov

109

cve-2015-4147

soapclient

php

code execution

remote attack

type confusion

nvd

7.8 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.133 Low

EPSS

Percentile

95.5%

JSON

The SoapClient::__call method in ext/soap/soap.c in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 does not verify that __default_headers is an array, which allows remote attackers to execute arbitrary code by providing crafted serialized data with an unexpected data type, related to a “type confusion” issue.

CPENameOperatorVersion
redhat:enterprise_linux_desktopredhat enterprise linux desktopeq7.0
redhat:enterprise_linux_workstationredhat enterprise linux workstationeq7.0
redhat:enterprise_linux_serverredhat enterprise linux servereq7.0
redhat:enterprise_linux_hpc_noderedhat enterprise linux hpc nodeeq7.0
redhat:enterprise_linux_server_eusredhat enterprise linux server euseq7.1
redhat:enterprise_linux_hpc_node_eusredhat enterprise linux hpc node euseq7.1
apple:mac_os_xapple mac os xle10.10.4
php:phpphpeq5.5.0
php:phpphpeq5.6.0
php:phpphpeq5.6.5

CPE	Name	Operator	Version
redhat:enterprise_linux_desktop	redhat enterprise linux desktop	eq	7.0
redhat:enterprise_linux_workstation	redhat enterprise linux workstation	eq	7.0
redhat:enterprise_linux_server	redhat enterprise linux server	eq	7.0
redhat:enterprise_linux_hpc_node	redhat enterprise linux hpc node	eq	7.0
redhat:enterprise_linux_server_eus	redhat enterprise linux server eus	eq	7.1
redhat:enterprise_linux_hpc_node_eus	redhat enterprise linux hpc node eus	eq	7.1
apple:mac_os_x	apple mac os x	le	10.10.4
php:php	php	eq	5.5.0
php:php	php	eq	5.6.0
php:php	php	eq	5.6.5