Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:27 a.m.4 views

SUSE CVE-2014-5459

The PEARREST class in REST.php in PEAR in PHP through 5.6.0 allows local users to write to arbitrary files via a symlink attack on a 1 rest.cachefile or 2 rest.cacheid file in /tmp/pear/cache/, related to the retrieveCacheFirst and useLocalCache functions...

3.6CVSS6.8AI score0.00643EPSS
Exploits1References7
IBM Security Bulletins
IBM Security Bulletins
added 2022/02/23 7:48 p.m.33 views

Security Bulletin: Network Intrusion Prevention System is affected by multiple D-BUS and PHP vulnerabilities (CVE-2014-3638, CVE-2014-3639, CVE-2014-3477, CVE-2014-5459, CVE-2014-3597, CVE-2014-4721)

Summary Security vulnerabilities have been discovered in the D-BUS CVE-2014-3638 CVE-2014-3639 CVE-2014-3477 and PHP CVE-2014-5459 CVE-2014-3597 CVE-2014-4721 components of IBM Security Network Intrusion Prevention System Vulnerability Details CVE-ID: CVE-2014-3638 DESCRIPTION: D-Bus is vulnerabl...

6.8CVSS8.3AI score0.15427EPSS
Exploits2Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2014:1141-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS9.7AI score0.15427EPSS
Exploits1References2
Hacker One
Hacker One
added 2016/04/16 10:49 p.m.118 views

Gratipay: PHP 5.4.45 is Outdated and Full of Preformance Interupting Arbitrary Code Execution Bugs

Your PHP version is affected by quite a few remote arbitrary code execution, remote file renaming, and remote file rewriting bugs that require no authentication and can cause big problems, from performance interruptions and messing with server files to DoS attacks. These are not related to any...

7.5CVSS8.4AI score0.14771EPSS
Exploits2
F5 Networks
F5 Networks
added 2015/09/01 12:0 a.m.78 views

SOL17212 - PHP vulnerability CVE-2014-5459

Note: As of February 17, 2015, AskF5 Security Advisory articles include the Severity value. Security Advisory articles published before this date do not list a Severity value. Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL995...

3.6CVSS0.5AI score0.00643EPSS
Exploits1References5
CVE
CVE
added 2014/09/27 10:0 a.m.255 views

CVE-2014-5459

CVE-2014-5459 affects the PEAR REST class (REST.php) in PEAR for PHP up to 5.6.0. The vulnerability arises from insecure temporary files created in /tmp/pear/cache (rest.cachefile and rest.cacheid) used by retrieveCacheFirst and useLocalCache, enabling a local attacker to write to arbitrary files...

3.6CVSS8.6AI score0.00643EPSS
Exploits1References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/09/18 12:0 a.m.239 views

SuSE 11.3 Security Update : php53 (SAT Patch Number 9718)

This php53 update fixes the following security issues : - Insecure temporary file used for cache data was fixed by switching to a different root only directory /var/cache/php-pear. CVE-2014-5459 - An incomplete fix for CVE-2014-4049. CVE-2014-3597 %NASLMINLEVEL 70300 C Tenable Network Security,...

6.8CVSS7AI score0.15427EPSS
Exploits1References8
Rows per page
Query Builder