Lucene search
K

39 matches found

CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.253 views

CVE-2021-21704 affecting package php 7.4.14-3

CVE-2021-21704 affecting package php 7.4.14-3. This CVE either no longer is or was never applicable...

5.9CVSS7AI score0.01724EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/09/13 12:0 a.m.35 views

Amazon Linux 2 : php (ALASPHP8.0-2023-008)

The version of php installed on the remote host is prior to 8.0.8-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2PHP8.0-2023-008 advisory. Several flaws has been found in php. The pdofirebase module does not check the length of the server version string in a...

5.9CVSS7.2AI score0.01945EPSS
Exploits2References6
SUSE CVE
SUSE CVE
added 2023/02/15 3:46 a.m.6 views

SUSE CVE-2021-21704

In PHP versions 7.3.x below 7.3.29, 7.4.x below 7.4.21 and 8.0.x below 8.0.8, when using Firebird PDO driver extension, a malicious database server could cause crashes in various database functions, such as getAttribute, execute, fetch and others by returning invalid response data that is not...

7.5CVSS7.6AI score0.01724EPSS
Exploits1References12
OpenVAS
OpenVAS
added 2022/11/21 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2022:4068-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.3AI score0.5838EPSS
Exploits18References2
OpenVAS
OpenVAS
added 2022/11/21 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2022:4069-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.5838EPSS
Exploits18References7
Tenable Nessus
Tenable Nessus
added 2022/11/19 12:0 a.m.42 views

SUSE SLED15: apache2-mod_php7 / php7 / php7-bcmath / php7-bz2 / php7-calendar / etc (SUSE-SU-2022:4069-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4069-1 advisory. - Version update to 7.4.33: - CVE-2022-31630: Fixed out-of-bounds read due to insufficient input...

9.8CVSS7.3AI score0.5838EPSS
Exploits18References41
Tenable Nessus
Tenable Nessus
added 2022/02/13 12:0 a.m.39 views

EulerOS Virtualization 3.0.6.0 : php (EulerOS-SA-2022-1089)

According to the versions of the php packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In PHP versions 7.3.x below 7.3.29, 7.4.x below 7.4.21 and 8.0.x below 8.0.8, when using Firebird PDO driver extension, a malicious...

5.9CVSS7.1AI score0.01945EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.30 views

Mageia: Security Advisory (MGASA-2021-0330)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6AI score0.01945EPSS
Exploits2References4
CloudLinux
CloudLinux
added 2021/11/23 1:13 p.m.84 views

Fix of CVE: CVE-2021-21704, CVE-2021-21703, CVE-2021-21705

CVE-2021-21704: fix integer overflow and subsequent incorrect buffer allocation - CVE-2021-21705: fix incorrect url password validation - CVE-2021-21703: fix incorrect shared memory management, which led to priv escalation...

7.8CVSS3AI score0.01945EPSS
Exploits3References1
NVD
NVD
added 2021/10/04 4:15 a.m.15 views

CVE-2021-21704

In PHP versions 7.3.x below 7.3.29, 7.4.x below 7.4.21 and 8.0.x below 8.0.8, when using Firebird PDO driver extension, a malicious database server could cause crashes in various database functions, such as getAttribute, execute, fetch and others by returning invalid response data that is not...

5.9CVSS0.01724EPSS
Exploits1References6
CVE
CVE
added 2021/10/04 4:0 a.m.655 views

CVE-2021-21704

CVE-2021-21704 involves PHP’s Firebird PDO driver extension. When using affected PHP versions, a malicious server can cause crashes in database functions (e.g., getAttribute(), execute(), fetch()) by returning invalid response data not parsed correctly by the driver, leading to crashes, denial of...

5.9CVSS5.6AI score0.01724EPSS
Exploits1References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/09/09 12:0 a.m.40 views

Amazon Linux AMI : php73 (ALAS-2021-1532)

The version of php73 installed on the remote host is prior to 7.3.29-1.30. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2021-1532 advisory. Several flaws has been found in php. The pdofirebase module does not check the length of the server version string in a...

5.9CVSS7.2AI score0.01945EPSS
Exploits2References5
Amazon
Amazon
added 2021/09/08 12:0 a.m.38 views

Medium: php73

Issue Overview: Several flaws has been found in php. The pdofirebase module does not check the length of the server version string in a response packet causing a stack buffer overflow, does not verify the data and uses the wrong type to cast length leading to a crash, and does not validate the...

5.9CVSS7.4AI score0.01945EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2021/08/21 12:0 a.m.43 views

SUSE SLES15: apache2-mod_php7 / php7 / php7-bcmath / php7-bz2 / php7-calendar / etc (SUSE-SU-2021:2795-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:2795-1 advisory. - CVE-2021-21704: Fixed security issues in pdofirebase module bsc1188035. Tenable has extracted the preceding description block directly fro...

5.9CVSS6.8AI score0.01724EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2021/08/21 12:0 a.m.22 views

openSUSE: Security Advisory for php7 (openSUSE-SU-2021:2795-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.9CVSS6.3AI score0.01724EPSS
Exploits1References2
OSV
OSV
added 2021/08/20 8:29 a.m.5 views

SUSE-SU-2021:2795-1 Security update for php7

This update for php7 fixes the following issues: - CVE-2021-21704: Fixed security issues in pdofirebase module bsc1188035...

5.9CVSS6.1AI score0.01724EPSS
Exploits1References3
OSV
OSV
added 2021/08/20 8:28 a.m.8 views

OPENSUSE-SU-2021:2795-1 Security update for php7

This update for php7 fixes the following issues: - CVE-2021-21704: Fixed security issues in pdofirebase module bsc1188035...

5.9CVSS6.2AI score0.01724EPSS
Exploits1References3
OPENSUSE Linux
OPENSUSE Linux
added 2021/08/20 12:0 a.m.49 views

Security update for php7 (important)

openSUSE Security Update: Security update for php7 Announcement ID: openSUSE-SU-2021:2795-1 Rating: important References: 1188035 Cross-References: CVE-2021-21704 CVSS scores: CVE-2021-21704 SUSE: 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Leap 15.3 An update tha...

7.5CVSS6.9AI score0.01724EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2021/08/11 12:0 a.m.43 views

openSUSE 15 Security Update : php7 (openSUSE-SU-2021:1130-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1130-1 advisory. - Tenable.sc leverages third-party software to help provide underlying functionality. Multiple third-party components were found to contain...

9.8CVSS7.2AI score0.9947EPSS
Exploits97References7
Tenable Nessus
Tenable Nessus
added 2021/08/07 12:0 a.m.89 views

SUSE SLED12: apache2-mod_php72 / php72 / php72-bcmath / php72-bz2 / etc (SUSE-SU-2021:2638-1)

The remote SUSE Linux SLED12 / SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:2638-1 advisory. - CVE-2021-21704: Fixed security issues in pdofirebase module bsc1188035. Tenable has extracted the preceding description block directly from t...

5.9CVSS6.8AI score0.01724EPSS
Exploits1References4
Rows per page
Query Builder