CVE-2018-10545

🗓️ 29 Apr 2018 21:00:00Reported by mitreType

CVE-2018-10545: PHP before 5.6.35, 7.0.x, 7.1.x, and 7.2.x allows bypassing opcache access controls

Reporter	Title	Published	Views	Family All 80
IBM Security Bulletins	Security Bulletin: API Connect Developer Portal is affected by multiple PHP vulnerabilities	1 Aug 201813:05	–	ibm
AlpineLinux	CVE-2018-10545	29 Apr 201821:00	–	alpinelinux
CloudLinux	php: Fix of 3 CVEs	8 May 202611:38	–	cloudlinux
CNVD	PHP Security Bypass Vulnerability (CNVD-2018-09561)	3 May 201800:00	–	cnvd
Cvelist	CVE-2018-10545	29 Apr 201821:00	–	cvelist
Debian	[SECURITY] [DLA 1373-1] php5 security update	9 May 201819:09	–	debian
Debian	[SECURITY] [DLA 1397-1] php5 security update	26 Jun 201818:41	–	debian
Debian	[SECURITY] [DSA 4240-1] php7.0 security update	5 Jul 201820:34	–	debian
Debian CVE	CVE-2018-10545	29 Apr 201821:00	–	debiancve
Tenable Nessus	Debian DLA-1373-1 : php5 security update	10 May 201800:00	–	nessus

NVD

Node

php phpRange<5.6.35

php phpRange7.0.0–7.0.29

php phpRange7.1.0–7.1.16

php phpRange7.2.0–7.2.4

Node

Node

Node

Source	Link
securityfocus	www.securityfocus.com/bid/104022
access	www.access.redhat.com/errata/RHSA-2019:2519
usn	www.usn.ubuntu.com/3646-2/
php	www.php.net/ChangeLog-7.php
security	www.security.gentoo.org/glsa/201812-01
usn	www.usn.ubuntu.com/3646-1/
bugs	www.bugs.php.net/bug.php
php	www.php.net/ChangeLog-5.php
security	www.security.netapp.com/advisory/ntap-20180607-0003/
tenable	www.tenable.com/security/tns-2018-12

21 Nov 2024 03:41Current

5.5Medium risk

Vulners AI Score5.5

CVSS 21.9

CVSS 34.7

EPSS0.00053