CVE-2015-4148

2015-06-0918:59:00

CWE-20

[email protected]

web.nvd.nist.gov

php

do_soap_call

type confusion

cve-2015-4148

nvd

security vulnerability

6.9 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.031 Low

EPSS

Percentile

90.9%

JSON

The do_soap_call function in ext/soap/soap.c in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 does not verify that the uri property is a string, which allows remote attackers to obtain sensitive information by providing crafted serialized data with an int data type, related to a “type confusion” issue.

CPENameOperatorVersion
apple:mac_os_xapple mac os xle10.10.4
redhat:enterprise_linux_desktopredhat enterprise linux desktopeq7.0
redhat:enterprise_linux_workstationredhat enterprise linux workstationeq7.0
redhat:enterprise_linux_serverredhat enterprise linux servereq7.0
redhat:enterprise_linux_hpc_noderedhat enterprise linux hpc nodeeq7.0
redhat:enterprise_linux_server_eusredhat enterprise linux server euseq7.1
redhat:enterprise_linux_hpc_node_eusredhat enterprise linux hpc node euseq7.1
php:phpphpeq5.5.0
php:phpphpeq5.6.0
php:phpphpeq5.6.5

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	le	10.10.4
redhat:enterprise_linux_desktop	redhat enterprise linux desktop	eq	7.0
redhat:enterprise_linux_workstation	redhat enterprise linux workstation	eq	7.0
redhat:enterprise_linux_server	redhat enterprise linux server	eq	7.0
redhat:enterprise_linux_hpc_node	redhat enterprise linux hpc node	eq	7.0
redhat:enterprise_linux_server_eus	redhat enterprise linux server eus	eq	7.1
redhat:enterprise_linux_hpc_node_eus	redhat enterprise linux hpc node eus	eq	7.1
php:php	php	eq	5.5.0
php:php	php	eq	5.6.0
php:php	php	eq	5.6.5