Lucene search
F5F5:K06430416HistorySep 09, 2016 - 12:00 a.m.
K06430416 : Zend Framework vulnerability CVE-2015-7695
2016-09-0900:00:00
my.f5.com
12
Security Advisory Description
The PDO adapters in Zend Framework before 1.12.16 do not filer null bytes in SQL statements, which allows remote attackers to execute arbitrary SQL commands via a crafted query. (CVE-2015-7695)
Impact
There is no impact; F5 products are not affected by this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.4.0 | |
| big-ip afm | eq | 11.4.1 | |
| big-ip afm | eq | 11.5.0 | |
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.5.4 | |
| big-ip afm | eq | 11.6.0 | |
| big-ip afm | eq | 11.6.1 | |
| big-ip afm | eq | 12.0.0 |
Related
nvd
nvd
CVE-2015-7695
2016-06-07 14:06:10
cve
cve
CVE-2015-7695
2016-06-07 14:06:10
nessus
nessus
Debian DLA-326-1 : zendframework security update
2015-10-16 00:00:00
FreeBSD : ZendFramework1 -- SQL injection vulnerability (d3324fdb-6bf0-11e5-bc5e-00505699053e)
2015-10-07 00:00:00
Debian DSA-3369-1 : zendframework - security update
2015-10-07 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-326-1)
2023-03-08 00:00:00
Debian: Security Advisory (DSA-3369-1)
2015-10-05 00:00:00
github
github
Zend Framework SQL injection vector using null byte for PDO
2022-05-17 03:44:23
f5
f5
SOL06430416 - Zend Framework vulnerability CVE-2015-7695
2016-09-09 00:00:00
veracode
veracode
SQL Injection
2017-07-26 02:57:56
prion
prion
Sql injection
2016-06-07 14:06:00
cvelist
cvelist
CVE-2015-7695
2016-06-07 14:00:00
ubuntucve
ubuntucve
CVE-2015-7695
2016-06-07 00:00:00
osv
osv
Zend Framework SQL injection vector using null byte for PDO
2022-05-17 03:44:23
zendframework - security update
2015-10-15 00:00:00
debian
debian
[SECURITY] [DLA 326-1] zendframework security update
2015-10-15 21:07:52
freebsd
freebsd
ZendFramework1 -- SQL injection vulnerability
2015-09-15 00:00:00