CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

Tenable Nessus•added 2025/09/02 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2024-9026

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In PHP versions 8.1. before 8.1.30, 8.2. before 8.2.24, 8.3. before 8.3.12, when using PHP-FPM SAPI and it is configured to catch workers output through...

3.3CVSS6.7AI score0.00482EPSS

Exploits1References2

OSV•added 2025/08/11 1:54 p.m.•3 views

BIT-LIBPHP-2024-9026 PHP-FPM logs from children may be altered

In PHP versions 8.1. before 8.1.30, 8.2. before 8.2.24, 8.3. before 8.3.12, when using PHP-FPM SAPI and it is configured to catch workers output through catchworkersoutput = yes, it may be possible to pollute the final log or remove up to 4 characters from the log messages by manipulating log...

3.3CVSS7.1AI score0.00482EPSS

Exploits1References4

SUSE CVE•added 2025/02/14 5:37 a.m.•3 views

SUSE CVE-2024-9026

3.3CVSS6.5AI score0.00482EPSS

Exploits1References13

AstraLinux•added 2024/11/23 3:4 a.m.•2 views

Astra Linux – Vulnerability in PHP 8.2

In PHP versions 8.1. before 8.1.30, 8.2. before 8.2.24, and 8.3. before 8.3.12, when using PHP-FPM SAPI and the option catchworkersoutput is set to yes, it is possible to manipulate the log messages by removing up to 4 characters from the log messages. Additionally, if PHP-FPM is configured to us...

3.3CVSS6.4AI score0.00482EPSS

Exploits1References3

OSV•added 2024/10/08 4:15 a.m.•2 views

AZL-50172 CVE-2024-9026 affecting package php for versions less than 8.3.12-1

3.3CVSS6.5AI score0.00482EPSS

Exploits1References1

OSV•added 2024/10/08 4:15 a.m.•2 views

DEBIAN-CVE-2024-9026

3.3CVSS6.2AI score0.00482EPSS

Exploits1References1

OSV•added 2024/09/27 12:0 a.m.•1 views

UBUNTU-CVE-2024-9026