Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004637)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004637 advisory. In the Linux kernel 5.5.0 and newer, the bpf verifier kernel/bpf/verifier.c did not properly restrict the register bounds for 32-bit operations, leading to...

7.8CVSS7AI score0.0601EPSS
Exploits9References15
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2020-8835

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel 5.5.0 and newer, the bpf verifier kernel/bpf/verifier.c did not properly restrict the register bounds for 32-bit operations, leading to...

7.8CVSS6.8AI score0.0601EPSS
Exploits9References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:1 a.m.1 views

SUSE CVE-2020-8835

In the Linux kernel 5.5.0 and newer, the bpf verifier kernel/bpf/verifier.c did not properly restrict the register bounds for 32-bit operations, leading to out-of-bounds reads and writes in kernel memory. The vulnerability also affects the Linux 5.4 stable series, starting with v5.4.7, as the...

7CVSS6.3AI score0.0601EPSS
Exploits9References4
CNNVD
CNNVD
added 2021/05/17 12:0 a.m.4 views

WordPress plugin 安全漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL servers to set up a personal blog site.WordPress Plugin is a WordPress open source application plugin . A security vulnerability exists in the Store Locator Plus...

8.8CVSS5.5AI score0.01149EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2020/04/02 6:0 p.m.36 views

CVE-2020-8835

In the Linux kernel 5.5.0 and newer, the bpf verifier kernel/bpf/verifier.c did not properly restrict the register bounds for 32-bit operations, leading to out-of-bounds reads and writes in kernel memory. The vulnerability also affects the Linux 5.4 stable series, starting with v5.4.7, as the...

7.8CVSS6.2AI score0.0601EPSS
Exploits9
OpenVAS
OpenVAS
added 2016/12/05 12:0 a.m.42 views

PHP 5.3.x < 5.3.29, 5.4.x < 5.4.30, 5.5.x < 5.5.14, 5.6.0alpha1 < 5.6.0 Heap Based Buffer Overflow Vulnerability - Linux

PHP is prone to a heap-based buffer overflow vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if...

5.1CVSS7.8AI score0.1091EPSS
Exploits0References3
0day.today
0day.today
added 2015/02/23 12:0 a.m.241 views

PHP DateTime Use After Free Vulnerability

Exploit for php platform in category dos / poc Use After Free Vulnerability in unserialize with DateTime CVE-2015-0273 Taoguang Chen - Write Date: 2015.1.29 - Release Date: 2015.2.20 A use-after-free vulnerability was discovered in unserialize with DateTime/DateTimeZone/DateInterval/DatePeriod...

7.5CVSS7.4AI score0.42911EPSS
Exploits9
OpenVAS
OpenVAS
added 2014/07/18 12:0 a.m.40 views

PHP 5.5.x < 5.5.15 Multiple Use After Free Vulnerabilities (Jul 2014)

PHP is prone to multiple use after free vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; ifdescription...

9.6AI score
Exploits0References6
Prion
Prion
added 2014/07/09 11:7 a.m.22 views

Design/Logic Flaw

The cdfcheckstreamoffset function in cdf.c in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, relies on incorrect sector-size data, which allows remote attackers to cause a denial of service application crash via a crafted stream offset in a CDF...

4.3CVSS6.9AI score0.14927EPSS
Exploits0References18Affected Software5
Prion
Prion
added 2014/07/09 11:7 a.m.23 views

Design/Logic Flaw

The cdfreadshortsector function in cdf.c in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, allows remote attackers to cause a denial of service assertion failure and application exit via a crafted CDF file...

4.3CVSS6.9AI score0.16853EPSS
Exploits0References19Affected Software5
Cvelist
Cvelist
added 2014/07/09 10:0 a.m.28 views

CVE-2014-0207

The cdfreadshortsector function in cdf.c in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, allows remote attackers to cause a denial of service assertion failure and application exit via a crafted CDF file...

7.9AI score0.16853EPSS
Exploits0References19
Mageia
Mageia
added 2014/07/08 10:29 p.m.81 views

Updated php packages fix multiple vulnerabilities

Updated php packages fix security vulnerabilities: The unserialize function in PHP before 5.4.30 and 5.5.14 has a Type Confusion issue related to the SPL ArrayObject and SPLObjectStorage Types CVE-2014-3515. It was discovered that PHP is vulnerable to a heap-based buffer overflow in the DNS TXT...

7.5CVSS9.5AI score0.30128EPSS
Exploits9References3
Tenable Nessus
Tenable Nessus
added 2014/07/08 12:0 a.m.60 views

Fedora 19 : php-5.5.14-1.fc19 (2014-7782)

26 Jun 2014, PHP 5.5.14 Core : - Fixed BC break introduced by patch for bug 67072. Anatol, Stas - Fixed bug 66622 Closures do not correctly capture the late bound class static:: in some cases. Levi Morrison - Fixed bug 67390 insecure temporary file use in the configure script. CVE-2014-3981 Remi ...

7.5CVSS7.1AI score0.30128EPSS
Exploits5References1
Positive Technologies
Positive Technologies
added 2014/07/06 12:0 a.m.12 views

PT-2014-2043 · Php +5 · Mod Php +7

Name of the Vulnerable Software and Affected Versions: PHP versions prior to 5.4.30 PHP versions 5.5.x prior to 5.5.14 Description: The issue is related to a "type confusion" vulnerability in the phpinfo implementation, which might allow context-dependent attackers to obtain sensitive information...

10CVSS8AI score0.53166EPSS
Exploits84References278
OSV
OSV
added 2014/07/04 12:0 a.m.3 views

UBUNTU-CVE-2014-4698

Use-after-free vulnerability in ext/spl/splarray.c in the SPL component in PHP through 5.5.14 allows context-dependent attackers to cause a denial of service or possibly have unspecified other impact via crafted ArrayIterator usage within applications in certain web-hosting environments...

4.6CVSS7.2AI score0.00681EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/07/01 12:0 a.m.55 views

Fedora 20 : php-5.5.14-1.fc20 (2014-7765)

26 Jun 2014, PHP 5.5.14 Core : - Fixed BC break introduced by patch for bug 67072. Anatol, Stas - Fixed bug 66622 Closures do not correctly capture the late bound class static:: in some cases. Levi Morrison - Fixed bug 67390 insecure temporary file use in the configure script. CVE-2014-3981 Remi ...

7.5CVSS7.1AI score0.30128EPSS
Exploits5References1
Positive Technologies
Positive Technologies
added 2014/06/09 12:0 a.m.16 views

PT-2014-1421 · Php +5 · Php +5

Name of the Vulnerable Software and Affected Versions: PHP versions prior to 5.4.30 PHP versions 5.5.x prior to 5.5.14 Description: The issue arises from incorrect anticipation of data structure types after unserialization in the SPL component, leading to potential remote code execution through...

10CVSS8.9AI score0.53166EPSS
Exploits87References292
Rows per page
Query Builder