7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.953 High
EPSS
Percentile
99.3%
03/30/2015
Critical
Multiple serious vulnerabilities have been found in PHP and extensions. Malicious users can exploit these vulnerabilities to cause denial of service or inject code.
PHP versions 5.6.7 and possibly earlier
PHP extensions calendar and pgsql
These vulnerabilities arenβt mitigated by vendor. You can protect yourself with disabling some functionality.
ACE
CVE-2015-23317.5Critical
CVE-2015-02317.5Critical
CVE-2015-23056.8High