Lucene search
K

25 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:59 p.m.163 views

K06420357: PHP vulnerability CVE-2017-16642

Security Advisory Description In PHP before 5.6.32, 7.x before 7.0.25, and 7.1.x before 7.1.11, an error in the date extension's timelibmeridian handling of 'front of' and 'back of' directives could be used by attackers able to supply date strings to leak information from the interpreter, related...

7.5CVSS6.3AI score0.26373EPSS
Exploits2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.42 views

SUSE: Security Advisory (SUSE-SU-2017:3277-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.26373EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.34 views

SUSE: Security Advisory (SUSE-SU-2018:0003-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.3AI score0.26373EPSS
Exploits4References6
OpenVAS
OpenVAS
added 2020/04/30 12:0 a.m.61 views

Huawei EulerOS: Security Advisory for php (EulerOS-SA-2020-1542)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.9AI score0.26373EPSS
Exploits8References2
RedHat Linux
RedHat Linux
added 2019/08/19 8:42 a.m.201 views

Moderate: Red Hat Security Advisory: rh-php71-php security, bug fix, and enhancement update

An update for rh-php71-php is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS6.9AI score0.87883EPSS
Exploits30References34
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.55 views

SUSE SLES12 Security Update : php7 (SUSE-SU-2017:3237-1)

This update for php7 fixes the following issues: Security issues fixed : - CVE-2017-16642: Fix timelibmeridian error that could be used to leak information from the interpreter bsc1067441. - CVE-2017-9229: Fix invalid pointer dereference in leftadjustcharhead bsc1069631. - CVE-2017-9228: Fix heap...

9.8CVSS6.9AI score0.26373EPSS
Exploits4References11
OpenVAS
OpenVAS
added 2018/02/14 12:0 a.m.56 views

Ubuntu: Security Advisory (USN-3566-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.79949EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2018/01/09 12:0 a.m.73 views

Debian DSA-4081-1 : php5 - security update

Several vulnerabilities were found in PHP, a widely-used open source general purpose scripting language : - CVE-2017-11142 Denial of service via overly long form variables - CVE-2017-11143 Invalid free in wddxdeserialize - CVE-2017-11144 Denial of service in openssl extension due to incorrect...

9.8CVSS6.2AI score0.26373EPSS
Exploits2References17
Debian
Debian
added 2018/01/08 10:33 p.m.64 views

[SECURITY] [DSA 4081-1] php5 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4081-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 08, 2018 https://www.debian.org/security/faq -...

9.8CVSS10AI score0.26373EPSS
Exploits2
Debian
Debian
added 2018/01/08 10:30 p.m.69 views

[SECURITY] [DSA 4080-1] php7.0 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4080-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff January 08, 2018 https://www.debian.org/security/faq -...

9.8CVSS10AI score0.26373EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2018/01/03 12:0 a.m.63 views

SUSE SLES11 Security Update : php53 (SUSE-SU-2018:0003-1)

This update for php53 fixes the following issues: Security issues fixed : - CVE-2017-16642: Fix timelibmeridian error that could be used to leak information from the interpreter bsc1067441. - CVE-2017-9228: Fix heap out-of-bounds write that occurs in bitsetsetrange during regex compilation...

9.8CVSS6.9AI score0.26373EPSS
Exploits4References10
OSV
OSV
added 2018/01/02 7:47 a.m.20 views

SUSE-SU-2018:0003-1 Security update for php53

This update for php53 fixes the following issues: Security issues fixed: - CVE-2017-16642: Fix timelibmeridian error that could be used to leak information from the interpreter bsc1067441. - CVE-2017-9228: Fix heap out-of-bounds write that occurs in bitsetsetrange during regex compilation...

9.8CVSS8.5AI score0.26373EPSS
Exploits4References7
Tenable Nessus
Tenable Nessus
added 2017/12/15 12:0 a.m.71 views

openSUSE Security Update : php5 (openSUSE-2017-1371)

This update for php5 fixes the following issues : Security issues fixed : - CVE-2017-16642: Fix timelibmeridian error that could be used to leak information from the interpreter bsc1067441. - CVE-2017-4025: Fix pathname truncation in setincludepath, tempnam, rmdir, and readlink bsc1067090. -...

9.8CVSS6.8AI score0.26373EPSS
Exploits4References8
Tenable Nessus
Tenable Nessus
added 2017/12/14 12:0 a.m.55 views

openSUSE Security Update : php7 (openSUSE-2017-1353)

This update for php7 fixes the following issues : Security issues fixed : - CVE-2017-16642: Fix timelibmeridian error that could be used to leak information from the interpreter bsc1067441. - CVE-2017-9229: Fix invalid pointer dereference in leftadjustcharhead bsc1069631. - CVE-2017-9228: Fix hea...

9.8CVSS6.8AI score0.26373EPSS
Exploits4References7
Check Point Advisories
Check Point Advisories
added 2017/11/20 12:0 a.m.22 views

PHP Core timelib_meridian Heap Buffer Overflow (CVE-2017-16642)

A heap-based buffer overflow vulnerability exists in PHP core function timelibmeridian. The vulnerability is due to improper validation of user input. A remote attacker can exploit the vulnerability by sending a crafted request with a malformed time attribute...

5CVSS3AI score0.26373EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2017/11/16 12:0 a.m.1142 views

PHP 5.6.x < 5.6.32 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.32. It is, therefore, affected by multiple vulnerabilities. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid104631;...

9.8CVSS7AI score0.26373EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2017/11/16 12:0 a.m.249 views

PHP 7.0.x < 7.0.25 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.25. It is, therefore, affected by multiple vulnerabilities. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid104632;...

9.8CVSS7AI score0.26373EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2017/11/16 12:0 a.m.256 views

PHP 7.1.x < 7.1.11 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 7.1.x prior to 7.1.11. It is, therefore, affected by multiple vulnerabilities. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid104633;...

9.8CVSS7AI score0.26373EPSS
Exploits3References3
RedhatCVE
RedhatCVE
added 2017/11/10 6:50 p.m.54 views

CVE-2017-16642

In PHP before 5.6.32, 7.x before 7.0.25, and 7.1.x before 7.1.11, an error in the date extension's timelibmeridian handling of 'front of' and 'back of' directives could be used by attackers able to supply date strings to leak information from the interpreter, related to ext/date/lib/parsedate.c...

7.5CVSS2.5AI score0.26373EPSS
Exploits2References1
Circl
Circl
added 2017/11/09 12:0 a.m.58 views

CVE-2017-16642

creationtimestamp| type| source ---|---|--- 2017-11-09 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/43133...

7.5CVSS7.5AI score0.26373EPSS
Exploits2References1
Rows per page
Query Builder