Lucene search
K

18 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.74 views

K48355112: PHP vulnerability CVE-2018-10549

Security Advisory Description An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. exifreaddata in ext/exif/exif.c has an out-of-bounds read for crafted JPEG data because exifiifaddvalue mishandles the case of a MakerNote that lacks a fin...

8.8CVSS8.2AI score0.07159EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/04/21 12:0 a.m.35 views

Slackware: Security Advisory (SSA:2018-136-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8AI score0.79949EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.37 views

Mageia: Security Advisory (MGASA-2018-0222)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.7AI score0.10433EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2019/08/19 8:42 a.m.202 views

Moderate: Red Hat Security Advisory: rh-php71-php security, bug fix, and enhancement update

An update for rh-php71-php is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS6.9AI score0.87606EPSS
Exploits30References34
Tenable Nessus
Tenable Nessus
added 2018/12/03 12:0 a.m.56 views

GLSA-201812-01 : PHP: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201812-01 PHP: Multiple vulnerabilities Multiple vulnerabilities have been discovered in PHP. Please review the referenced CVE identifiers for details. Impact : An attacker could cause a Denial of Service condition or obtain...

8.8CVSS6.4AI score0.10433EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2018/09/24 12:0 a.m.70 views

Tenable SecurityCenter < 5.7.1 Multiple Vulnerabilities (TNS-2018-12)

According to its self-reported version, the Tenable SecurityCenter application installed on the remote host is prior to 5.7.1. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported...

9.8CVSS6.5AI score0.87606EPSS
Exploits5References12
Debian
Debian
added 2018/07/05 8:34 p.m.86 views

[SECURITY] [DSA 4240-1] php7.0 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4240-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 05, 2018 https://www.debian.org/security/faq -...

9.8CVSS8.8AI score0.87606EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2018/06/27 12:0 a.m.58 views

Debian DLA-1397-1 : php5 security update

Several vulnerabilities were found in PHP, a widely-used open source general purpose scripting language : CVE-2018-7584 A stack-buffer-overflow while parsing HTTP response results in copying a large string and possible memory corruption and/or denial of service CVE-2018-10545 Dumpable FPM child...

9.8CVSS6.6AI score0.87606EPSS
Exploits3References8
Debian
Debian
added 2018/06/26 6:41 p.m.63 views

[SECURITY] [DLA 1397-1] php5 security update

Package : php5 Version : 5.6.36+dfsg-0+deb8u1 CVE ID : CVE-2018-7584 CVE-2018-10545 CVE-2018-10546 CVE-2018-10547 CVE-2018-10548 CVE-2018-10549 Several vulnerabilities were found in PHP, a widely-used open source general purpose scripting language: CVE-2018-7584 A stack-buffer-overflow while...

9.8CVSS6.7AI score0.87606EPSS
Exploits3
Slackware Linux
Slackware Linux
added 2018/05/17 4:21 a.m.117 views

[slackware-security] php

New php packages are available for Slackware 14.0, 14.1, and 14.2 to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/php-5.6.36-i586-1slack14.2.txz: Upgraded. This fixes many bugs, including some security issues: Heap Buffer Overflow READ: 1786 in...

8.8CVSS0.4AI score0.79949EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/05/17 12:0 a.m.60 views

Slackware 14.0 / 14.1 / 14.2 : php (SSA:2018-136-02)

New php packages are available for Slackware 14.0, 14.1, and 14.2 to fix security issues. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2018-136-02. The text itself is copyright C Slackware Linux, Inc...

8.8CVSS6.6AI score0.10433EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2018/05/16 12:0 a.m.49 views

Fedora Update for php FEDORA-2018-ee6707d519

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.79949EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/05/15 12:0 a.m.55 views

Ubuntu: Security Advisory (USN-3646-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.10433EPSS
Exploits0References2
Mageia
Mageia
added 2018/05/04 5:29 p.m.63 views

Updated php packages fix security vulnerabilities

- Heap Buffer Overflow READ: 1786 in exifiifaddvalue CVE-2018-10549 - Stream filter convert.iconv leads to infinite loop on invalid sequence CVE-2018-10546 - Malicious LDAP-Server Response causes Crash. CVE-2018-10548 - incomplete PHAR Fix CVE-2018-10547...

8.8CVSS1.8AI score0.10433EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2018/05/04 12:0 a.m.50 views

Fedora Update for php FEDORA-2018-6071a600e8

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.5AI score0.79949EPSS
Exploits0References2
CVE
CVE
added 2018/04/29 9:0 p.m.627 views

CVE-2018-10549

PHP contains an out-of-bounds read in exif_read_data() (ext/exif/exif.c) when parsing crafted JPEG data due to MakerNote handling lacking a final '\0' character. Affected are PHP 5.6.x up to 5.6.36, 7.0.x up to 7.0.30, 7.1.x up to 7.1.17, and 7.2.x up to 7.2.5. Impact: potential reads beyond boun...

8.8CVSS7.8AI score0.07159EPSS
Exploits0References13Affected Software1
Cvelist
Cvelist
added 2018/04/29 9:0 p.m.47 views

CVE-2018-10549

An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. exifreaddata in ext/exif/exif.c has an out-of-bounds read for crafted JPEG data because exifiifaddvalue mishandles the case of a MakerNote that lacks a final '\0' character...

7.9AI score0.07159EPSS
Exploits0References13
AlpineLinux
AlpineLinux
added 2018/04/29 9:0 p.m.36 views

CVE-2018-10549

An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. exifreaddata in ext/exif/exif.c has an out-of-bounds read for crafted JPEG data because exifiifaddvalue mishandles the case of a MakerNote that lacks a final '\0' character...

8.8CVSS8.1AI score0.07159EPSS
Exploits0
Rows per page
Query Builder