Lucene search

K
cvelistMicrofocusCVELIST:CVE-2015-6834
HistoryMay 16, 2016 - 10:00 a.m.

CVE-2015-6834

2016-05-1610:00:00
microfocus
www.cve.org
7

AI Score

8.7

Confidence

High

EPSS

0.201

Percentile

96.4%

Multiple use-after-free vulnerabilities in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 allow remote attackers to execute arbitrary code via vectors related to (1) the Serializable interface, (2) the SplObjectStorage class, and (3) the SplDoublyLinkedList class, which are mishandled during unserialization.