Lucene search
K

46 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : php:8.0 (AXSA:2023-6531:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6531:01 advisory. php: XML loading external entity without being enabled CVE-2023-3823 php: phar Buffer mismanagement CVE-2023-3824 php: 1-byte array overrun in commo...

9.8CVSS8.7AI score0.08003EPSS
Exploits6References7
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2023-0662

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, excessive number of parts in HTTP form upload can cause high resource consumption and...

7.5CVSS7.7AI score0.01408EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/12/13 12:0 a.m.23 views

Oracle Linux 8 : php:7.4 (ELSA-2024-10952)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10952 advisory. - Fix cgi.forceredirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered...

9.8CVSS7.7AI score0.49336EPSS
Exploits13References12
OSV
OSV
added 2024/02/12 8:17 p.m.30 views

RLSA-2024:0387 Moderate: php:8.1 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: 1-byte array overrun in common path resolve code CVE-2023-0568 php: DoS vulnerability when parsing multipart request body CVE-2023-0662 php: Missing error check and insufficient random bytes...

7.5CVSS7.9AI score0.08003EPSS
Exploits6References7
RedHat Linux
RedHat Linux
added 2024/01/24 9:59 a.m.63 views

Moderate: Red Hat Security Advisory: php:8.1 security update

An update for the php:8.1 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS7.1AI score0.08003EPSS
Exploits6References7
OSV
OSV
added 2024/01/24 12:0 a.m.44 views

ALSA-2024:0387 Moderate: php:8.1 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: 1-byte array overrun in common path resolve code CVE-2023-0568 php: DoS vulnerability when parsing multipart request body CVE-2023-0662 php: Missing error check and insufficient random bytes...

9.8CVSS7.9AI score0.08003EPSS
Exploits6References14
Tenable Nessus
Tenable Nessus
added 2023/12/04 12:0 a.m.44 views

Amazon Linux 2 : php (ALAS-2023-2375)

The version of php installed on the remote host is prior to 5.4.16-46. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2375 advisory. An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5...

9.8CVSS7.9AI score0.06261EPSS
Exploits3References10
Tenable Nessus
Tenable Nessus
added 2023/10/21 12:0 a.m.96 views

AlmaLinux 8 : php:8.0 (ALSA-2023:5927)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:5927 advisory. php: XML loading external entity without being enabled CVE-2023-3823 php: phar Buffer mismanagement CVE-2023-3824 php: 1-byte array overrun in common path...

9.8CVSS7.7AI score0.08003EPSS
Exploits6References7
AlmaLinux
AlmaLinux
added 2023/10/19 12:0 a.m.78 views

Important: php security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: XML loading external entity without being enabled CVE-2023-3823 php: phar Buffer mismanagement CVE-2023-3824 php: 1-byte array overrun in common path resolve code CVE-2023-0568 php: DoS...

9.8CVSS9.5AI score0.08003EPSS
Exploits6References14
Tenable Nessus
Tenable Nessus
added 2023/10/19 12:0 a.m.28 views

RHEL 8 : php:8.0 (RHSA-2023:5927)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:5927 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: XML loading external entity witho...

9.8CVSS7.8AI score0.08003EPSS
Exploits6References14
Tenable Nessus
Tenable Nessus
added 2023/10/19 12:0 a.m.33 views

RHEL 9 : php (RHSA-2023:5926)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:5926 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: XML loading external entity witho...

9.8CVSS7.8AI score0.08003EPSS
Exploits6References14
Amazon
Amazon
added 2023/09/13 12:0 a.m.8 views

Important: php

Issue Overview: In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, passwordverify function may accept some invalid Blowfish hashes as valid. If such invalid hash ever ends up in the password database, it may lead to an application allowing any password for this entry as valid...

8.1CVSS7.3AI score0.01408EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2023/09/13 12:0 a.m.46 views

Amazon Linux 2 : php (ALASPHP8.2-2023-001)

The version of php installed on the remote host is prior to 8.2.3-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2PHP8.2-2023-001 advisory. 2023-09-14: CVE-2023-0568 was added to this advisory. In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before...

8.1CVSS7.2AI score0.01408EPSS
Exploits2References8
OSV
OSV
added 2023/08/31 12:15 p.m.3 views

BELL-CVE-2023-0662 CVE-2023-0662 does not affect BellSoft software

Bulletin has no description...

7.5CVSS7.3AI score0.01408EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2023/08/01 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for php (EulerOS-SA-2023-2506)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.9AI score0.01831EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2023/06/23 12:0 a.m.31 views

F5 Networks BIG-IP : PHP vulnerability (K000133753)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3 / 17.5.1. It is, therefore, affected by a vulnerability as referenced in the K000133753 advisory. In PHP 8.0.X before 8.0.28, 8.1.X before 8.1.16 and 8.2.X before 8.2.3, excessive number of parts in HTTP form upload...

7.5CVSS6.8AI score0.01408EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/06/09 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for php (EulerOS-SA-2023-2196)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.9AI score0.01831EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2023/04/25 12:0 a.m.23 views

Tenable SecurityCenter 5.22.0 / 5.23.1 / 6.0.0 Multiple Vulnerabilities (TNS-2023-18)

According to its self-reported version, the Tenable SecurityCenter application installed on the remote host is running 5.22.0 or 5.23.1 or 6.0.0 and and is therefore affected by multiple vulnerabilities in PHP prior to version 8.0.28 / 8.1.16 / 8.2.3: - In PHP 8.0.X before 8.0.28, 8.1.X before...

8.1CVSS7.2AI score0.01408EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2023/03/28 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2023:0476-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.3AI score0.02154EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2023/03/23 12:0 a.m.52 views

Tenable SecurityCenter < 6.1.0 Multiple Vulnerabilities (TNS-2023-16)

According to its self-reported version, the Tenable SecurityCenter application installed on the remote host is running 6.0.0 or earlier and is therefore affected by multiple vulnerabilities in Apache prior to version 2.4.56 and PHP prior to version 8.1.16: - Some modproxy configurations on Apache...

9.8CVSS7.2AI score0.8377EPSS
Exploits6References5
Rows per page
Query Builder