7.4 High
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
68.1%
Zend Framework before 2.4.9, zend-framework/zend-crypt 2.4.x before 2.4.9, and 2.5.x before 2.5.2 allows remote attackers to recover the RSA private key.
bugzilla.redhat.com/show_bug.cgi?id=1283137
framework.zend.com/security/advisory/ZF2015-10