Lucene search
+L

29 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : php:7.4 (AXSA:2022-4415:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-4415:01 advisory. php: Special character breaks path in xml parsing CVE-2021-21707 php: Use after free due to phpfilterfloat failing for ints CVE-2021-21708 php-pear:...

9.8CVSS6.7AI score0.73377EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2021-32610

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In ArchiveTar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193. CVE-2021-32610 Note...

7.5CVSS7.6AI score0.73377EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.19 views

RHEL 6 : php-pear (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - php-pear: File overwrite by malicious server CVE-2017-5630 - In ArchiveTar before 1.4.14, symlinks can...

8.2AI score0.73377EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.26 views

RHEL 7 : php-pear (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - php-pear: File overwrite by malicious server CVE-2017-5630 - In ArchiveTar before 1.4.14, symlinks can...

8.2AI score0.73377EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.20 views

openSUSE: Security Advisory for php8 (SUSE-SU-2022:3198-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7.3AI score0.73377EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 3:41 a.m.2 views

SUSE CVE-2021-32610

In ArchiveTar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193...

7.1CVSS7AI score0.73377EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/02/08 12:0 a.m.30 views

openSUSE 15 Security Update : php8-pear (SUSE-SU-2022:3198-2)

The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2022:3198-2 advisory. - Add php8-pear to SLE15-SP4 jscSLE-24728 - Update to 1.10.21 - PEAR 1.10.13 unsupported protocol - use --force to continue Add $this operator to...

7.1CVSS7.2AI score0.73377EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/11/15 12:0 a.m.62 views

Oracle Linux 8 : php:7.4 (ELSA-2022-7628)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-7628 advisory. - fix password of excessive length triggers buffer overflow leading to RCE CVE-2022-31626 - fix SSRF bypass in FILTERVALIDATEURL CVE-2021-21705 - fix...

9.8CVSS7.9AI score0.73377EPSS
Exploits6References4
Tenable Nessus
Tenable Nessus
added 2022/11/14 12:0 a.m.32 views

AlmaLinux 8 : php:7.4 (ALSA-2022:7628)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:7628 advisory. php: Special character breaks path in xml parsing CVE-2021-21707 php: Use after free due to phpfilterfloat failing for ints CVE-2021-21708 php-pear:...

9.8CVSS7.3AI score0.73377EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2022/11/08 10:18 a.m.57 views

Moderate: Red Hat Security Advisory: php:7.4 security, bug fix, and enhancement update

An update for the php:7.4 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9.8CVSS6.7AI score0.73377EPSS
Exploits2References6
OSV
OSV
added 2022/11/08 6:25 a.m.26 views

RLSA-2022:7628 Moderate: php:7.4 security, bug fix, and enhancement update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later upstream version: php 7.4.30, php-pear 1.10.13. BZ2055422 Security Fixes: php: Special character breaks path in xml parsing CVE-2021-21707 php: Use after free...

9.8CVSS8.6AI score0.73377EPSS
Exploits2References5
OSV
OSV
added 2022/11/08 12:0 a.m.28 views

ALSA-2022:7628 Moderate: php:7.4 security, bug fix, and enhancement update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later upstream version: php 7.4.30, php-pear 1.10.13. BZ2055422 Security Fixes: php: Special character breaks path in xml parsing CVE-2021-21707 php: Use after free...

9.8CVSS8.6AI score0.73377EPSS
Exploits2References8
AlmaLinux
AlmaLinux
added 2022/11/08 12:0 a.m.63 views

Moderate: php:7.4 security, bug fix, and enhancement update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later upstream version: php 7.4.30, php-pear 1.10.13. BZ2055422 Security Fixes: php: Special character breaks path in xml parsing CVE-2021-21707 php: Use after free...

9.8CVSS8.6AI score0.73377EPSS
Exploits2References8
OpenVAS
OpenVAS
added 2022/09/09 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2022:3198-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7.1AI score0.73377EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/09/09 12:0 a.m.39 views

SUSE SLES15 Security Update : php8-pear (SUSE-SU-2022:3198-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3198-1 advisory. - Add php8-pear to SLE15-SP4 jscSLE-24728 - Update to 1.10.21 - PEAR 1.10.13 unsupported protocol - use --force to continue Add $this operat...

7.1CVSS7.2AI score0.73377EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2021/11/01 3:52 p.m.56 views

Security Bulletin: IBM API Connect is impacted by a vulnerability in Drupal core (CVE-2021-32610)

Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2021-32610 DESCRIPTION: Drupal Core could allow a remote attacker to execute arbitrary code on the system, caused by the use of the third-party PEAR ArchiveTar library. By persuading a victim to...

7.1CVSS1.3AI score0.73377EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/09/24 12:0 a.m.31 views

EulerOS 2.0 SP8 : php-pear (EulerOS-SA-2021-2480)

According to the versions of the php-pear package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In ArchiveTar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193...

7.5CVSS7.8AI score0.73377EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/09/24 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for php-pear (EulerOS-SA-2021-2480)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS7.7AI score0.73377EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/09/16 12:0 a.m.43 views

Amazon Linux 2 : php-pear (ALAS-2021-1708)

The version of php-pear installed on the remote host is prior to 1.10.12-9. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2021-1708 advisory. In ArchiveTar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than...

7.5CVSS7.8AI score0.73377EPSS
Exploits0References3
Amazon
Amazon
added 2021/09/15 12:0 a.m.36 views

Medium: php-pear

Issue Overview: In ArchiveTar before 1.4.14, symlinks can refer to targets outside of the extracted archive, a different vulnerability than CVE-2020-36193. CVE-2021-32610 Affected Packages: php-pear Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section fo...

7.5CVSS8AI score0.73377EPSS
Exploits0
Rows per page
Query Builder