Lucene search
K

61 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.10 views

TencentOS Server 4: php (TSSA-2025:0005)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0005 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

9.1CVSS7.4AI score0.49336EPSS
Exploits5References5
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.11 views

TencentOS Server 3: php (TSSA-2023:0117)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0117 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

9.8CVSS7.6AI score0.49336EPSS
Exploits6References6
Tenable Nessus
Tenable Nessus
added 2024/02/06 12:0 a.m.25 views

Amazon Linux 2 : php (ALASPHP8.0-2024-010)

The version of php installed on the remote host is prior to 8.0.24-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2PHP8.0-2024-010 advisory. 2024-02-15: CVE-2022-31629 was added to this advisory. 2024-02-15: CVE-2022-31628 was added to this advisory. In PHP...

6.5CVSS7.8AI score0.49336EPSS
Exploits2References8
Amazon
Amazon
added 2023/09/13 12:0 a.m.6 views

Medium: php

Issue Overview: In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress quines gzip files, resulting in an infinite loop. CVE-2022-31628 In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site attackers to...

6.5CVSS7.2AI score0.49336EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2023/09/13 12:0 a.m.69 views

Amazon Linux 2 : php (ALASPHP8.0-2023-005)

The version of php installed on the remote host is prior to 8.0.24-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2PHP8.0-2023-005 advisory. In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress quines gzip...

6.5CVSS7.2AI score0.49336EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2023/06/13 12:0 a.m.51 views

EulerOS Virtualization 3.0.6.0 : php (EulerOS-SA-2023-2243)

According to the versions of the php packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - The zendstringextend function in Zend/zendstring.h in PHP through 7.1.5 does not prevent changes to string objects that result in a...

9.8CVSS8AI score0.49336EPSS
Exploits10References10
OpenVAS
OpenVAS
added 2023/06/12 12:0 a.m.31 views

Huawei EulerOS: Security Advisory for php (EulerOS-SA-2023-2243)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.49336EPSS
Exploits10References2
Tenable Nessus
Tenable Nessus
added 2023/05/19 12:0 a.m.82 views

AlmaLinux 8 : php:7.4 (ALSA-2023:2903)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:2903 advisory. XKCP: buffer overflow in the SHA-3 reference implementation CVE-2022-37454 php: standard insecure cookie could be treated as a 'Host-' or 'Secure-' cookie...

9.8CVSS7.4AI score0.49336EPSS
Exploits6References6
RedHat Linux
RedHat Linux
added 2023/05/16 9:8 a.m.53 views

Moderate: Red Hat Security Advisory: php:7.4 security update

An update for the php:7.4 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS6.9AI score0.49336EPSS
Exploits7References7
Tenable Nessus
Tenable Nessus
added 2023/05/16 12:0 a.m.44 views

RHEL 8 : php:7.4 (RHSA-2023:2903)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:2903 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later...

9.8CVSS7.5AI score0.49336EPSS
Exploits7References15
OSV
OSV
added 2023/05/16 12:0 a.m.38 views

ALSA-2023:2903 Moderate: php:7.4 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later upstream version: php 7.4.33. Security Fixes: XKCP: buffer overflow in the SHA-3 reference implementation CVE-2022-37454 php: standard insecure cookie could b...

9.8CVSS8.8AI score0.49336EPSS
Exploits6References12
Tenable Nessus
Tenable Nessus
added 2023/05/14 12:0 a.m.41 views

AlmaLinux 9 : php:8.1 (ALSA-2023:2417)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:2417 advisory. XKCP: buffer overflow in the SHA-3 reference implementation CVE-2022-37454 php: standard insecure cookie could be treated as a 'Host-' or 'Secure-' cookie...

9.8CVSS7.4AI score0.49336EPSS
Exploits6References6
Tenable Nessus
Tenable Nessus
added 2023/05/12 12:0 a.m.40 views

RHEL 9 : php:8.1 (RHSA-2023:2417)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:2417 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later...

9.8CVSS7.5AI score0.49336EPSS
Exploits6References14
OSV
OSV
added 2023/05/09 12:0 a.m.50 views

ALSA-2023:2417 Moderate: php:8.1 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later upstream version: php 8.1.14. Security Fixes: XKCP: buffer overflow in the SHA-3 reference implementation CVE-2022-37454 php: standard insecure cookie could b...

9.8CVSS8.8AI score0.49336EPSS
Exploits6References12
AlmaLinux
AlmaLinux
added 2023/05/09 12:0 a.m.76 views

Moderate: php:8.1 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later upstream version: php 8.1.14. Security Fixes: XKCP: buffer overflow in the SHA-3 reference implementation CVE-2022-37454 php: standard insecure cookie could b...

9.8CVSS8.9AI score0.49336EPSS
Exploits6References12
OSV
OSV
added 2023/04/06 3:53 p.m.43 views

RLSA-2023:0965 Moderate: php security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later upstream version: php 8.0.27. BZ2161667 Security Fixes: XKCP: buffer overflow in the SHA-3 reference implementation CVE-2022-37454 php: standard insecure cook...

8.1CVSS8.8AI score0.49336EPSS
Exploits6References6
Amazon
Amazon
added 2023/03/22 12:0 a.m.20 views

Important: php8.1

Issue Overview: A vulnerability was found in php. This issue occurs due to memory corruption in the finfobuffer function and a bad patch of the libmagic library. This flaw allows an attacker or malicious actor to execute a heap buffer overflow successfully, causing a memory crash. CVE-2022-31627 ...

9.8CVSS8.7AI score0.49336EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2023/03/21 12:0 a.m.150 views

Amazon Linux 2023 : php8.1, php8.1-bcmath, php8.1-cli (ALAS2023-2023-081)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-081 advisory. A vulnerability was found in php. This issue occurs due to memory corruption in the finfobuffer function and a bad patch of the libmagic library. This flaw allows an attacker or malicious actor...

9.8CVSS7.8AI score0.49336EPSS
Exploits7References14
OpenVAS
OpenVAS
added 2023/03/03 12:0 a.m.22 views

Ubuntu: Security Advisory (USN-5905-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.3AI score0.49336EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2023/03/02 12:0 a.m.28 views

Ubuntu 16.04 ESM : PHP vulnerabilities (USN-5905-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5905-1 advisory. It was discovered that PHP incorrectly handled certain gzip files. An attacker could possibly use this issue to cause a denial of service. CVE-2022-31628...

9.1CVSS7.6AI score0.49336EPSS
Exploits3References6
Rows per page
Query Builder