Lucene search
K

32 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2018-14851

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - exifprocessIFDinMAKERNOTE in ext/exif/exif.c in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8 allows remote attackers to...

5.5CVSS6.5AI score0.04306EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.35 views

Mageia: Security Advisory (MGASA-2018-0390)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.8AI score0.08975EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.27 views

SUSE: Security Advisory (SUSE-SU-2018:2681-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.08975EPSS
Exploits2References6
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2018:2682-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.068EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2018:2337-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.6AI score0.07562EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2019/12/30 9:40 p.m.45 views

CVE-2018-14851

exifprocessIFDinMAKERNOTE in ext/exif/exif.c in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted JPEG file...

5.9CVSS4.8AI score0.04306EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2019/08/19 8:42 a.m.202 views

Moderate: Red Hat Security Advisory: rh-php71-php security, bug fix, and enhancement update

An update for rh-php71-php is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS6.9AI score0.87606EPSS
Exploits30References34
IBM Security Bulletins
IBM Security Bulletins
added 2019/04/15 3:25 p.m.25 views

Security Bulletin: IBM BladeCenter Advanced Management Module (AMM) is affected by vulnerabilities in PHP (CVE-2018-14851 CVE-2017-9118)

Summary IBM Advanced Management Module AMM has addressed the following vulnerabilities in PHP. Vulnerability Details CVEID: CVE-2018-14851 DESCRIPTION: PHP is vulnerable to a denial of service, caused by an out-of-bounds read in the exifprocessIFDinMAKERNOTE function in ext/exif/exif.c. By...

7.5CVSS1.2AI score0.04306EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.34 views

openSUSE Security Update : php7 (openSUSE-2019-619)

This update for php7 fixes the following issues: The following security vulnerabilities were fixed : - CVE-2018-14851: Fixed an out-of-bound read in exifprocessIFDinMAKERNOTE, which could be exploited by an attacker via crafted JPG files, and could result in an application crash. bsc1103659 -...

9.8CVSS7.2AI score0.07562EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.43 views

SUSE SLES15 Security Update : php7 (SUSE-SU-2018:2337-1)

This update for php7 fixes the following issues: The following security vulnerabilities were fixed : - CVE-2018-14851: Fixed an out-of-bound read in exifprocessIFDinMAKERNOTE, which could be exploited by an attacker via crafted JPG files, and could result in an application crash. bsc1103659 -...

9.8CVSS7.2AI score0.07562EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.44 views

SUSE SLES12 Security Update : php5 (SUSE-SU-2018:2682-1)

This update for php5 fixes the following issues : The following security issues were fixed : CVE-2018-10360: Fixed an out-of-bounds read in the docorenote function in readelf.c in libmagic.a, which allowed remote attackers to cause a denial of service via a crafted ELF file bsc1096984...

9.8CVSS6.5AI score0.068EPSS
Exploits1References13
Debian
Debian
added 2018/12/10 9:40 p.m.142 views

[SECURITY] [DSA 4353-1] php7.0 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4353-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 10, 2018 https://www.debian.org/security/faq -...

8.5CVSS8.2AI score0.9523EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2018/09/24 12:0 a.m.70 views

Tenable SecurityCenter < 5.7.1 Multiple Vulnerabilities (TNS-2018-12)

According to its self-reported version, the Tenable SecurityCenter application installed on the remote host is prior to 5.7.1. It is, therefore, affected by multiple vulnerabilities. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported...

9.8CVSS6.5AI score0.87606EPSS
Exploits5References12
OpenVAS
OpenVAS
added 2018/09/19 12:0 a.m.43 views

Ubuntu: Security Advisory (USN-3766-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.9AI score0.08975EPSS
Exploits2References2
Ubuntu
Ubuntu
added 2018/09/18 7:22 a.m.178 views

USN-3766-1: PHP vulnerabilities

It was discovered that PHP incorrectly handled restarting certain child processes when php-fpm is used. A remote attacker could possibly use this issue to cause a denial of service. This issue was only addressed in Ubuntu 18.04 LTS. CVE-2015-9253 It was discovered that PHP incorrectly handled...

7.5CVSS6.6AI score0.08975EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2018/09/18 12:0 a.m.83 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : PHP vulnerabilities (USN-3766-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3766-1 advisory. It was discovered that PHP incorrectly handled restarting certain child processes when php-fpm is used. A remote attacker could...

7.5CVSS6.5AI score0.08975EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2018/09/13 12:0 a.m.248 views

openSUSE: Security Advisory for php5 (openSUSE-SU-2018:2694-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS6.9AI score0.068EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/09/12 12:0 a.m.49 views

SUSE SLES11 Security Update : php53 (SUSE-SU-2018:2681-1)

This update for php53 fixes the following issues : The following security issues were fixed : CVE-2018-14851: Fixed an out-of-bound read in exifprocessIFDinMAKERNOTE, which could be exploited by an attacker via crafted JPG files, and could result in an application crash. bsc1103659 CVE-2018-14883...

7.5CVSS6.5AI score0.08975EPSS
Exploits2References10
OSV
OSV
added 2018/09/10 1:51 p.m.18 views

SUSE-SU-2018:2681-1 Security update for php53

This update for php53 fixes the following issues: The following security issues were fixed: - CVE-2018-14851: Fixed an out-of-bound read in exifprocessIFDinMAKERNOTE, which could be exploited by an attacker via crafted JPG files, and could result in an application crash. bsc1103659 -...

7.5CVSS6.9AI score0.08975EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2018/09/04 12:0 a.m.58 views

Debian DLA-1490-1 : php5 security update

Two vulnerabilities have been discovered in php5, a server-side, HTML-embedded scripting language. One CVE-2018-14851 results in a potential denial of service out-of-bounds read and application crash via a crafted JPEG file. The other CVE-2018-14883 is an Integer Overflow that leads to a heap-bas...

7.5CVSS6.5AI score0.08975EPSS
Exploits1References4
Rows per page
Query Builder