Lucene search
K

44 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 8 : php:7.4 (AXSA:2024-9405:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-9405:01 advisory. php: 1-byte array overrun in common path resolve code CVE-2023-0568 php: Passwordverify always return true with some hash CVE-2023-0567 php: Missing...

9.8CVSS8AI score0.49336EPSS
Exploits13References12
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.9 views

TencentOS Server 3: php:8.2 (TSSA-2024:1122)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:1122 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

7.5CVSS7.6AI score0.3786EPSS
Exploits5References7
Oracle linux
Oracle linux
added 2025/05/22 12:0 a.m.17 views

php security update

8.0.30-3 - Fix libxml streams use wrong content-type header when requesting a redirected resource CVE-2025-1219 - Fix Stream HTTP wrapper header check might omit basic auth header CVE-2025-1736 - Fix Stream HTTP wrapper truncate redirect location to 1024 bytes CVE-2025-1861 - Fix Streams HTTP...

6.3CVSS8.5AI score0.49336EPSS
Exploits12
Tenable Nessus
Tenable Nessus
added 2025/05/13 12:0 a.m.10 views

RHEL 9 : php (RHSA-2025:7315)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:7315 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: host/secure cookie bypass due to...

8.2CVSS7.6AI score0.49336EPSS
Exploits10References23
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-8927

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In PHP versions 8.1. before 8.1.30, 8.2. before 8.2.24, 8.3. before 8.3.12, HTTPREDIRECTSTATUS variable is used to check whether or not CGI binary is being run ...

7.5CVSS7.1AI score0.01077EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/02/27 12:0 a.m.6 views

Ubuntu: Security Advisory (USN-7049-3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.01077EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.11 views

Azure Linux 3.0 Security Update: php (CVE-2024-8927)

The version of php installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-8927 advisory. - In PHP versions 8.1. before 8.1.30, 8.2. before 8.2.24, 8.3. before 8.3.12, HTTPREDIRECTSTATUS variable is used ...

7.5CVSS7.3AI score0.01077EPSS
Exploits1References2
OSV
OSV
added 2024/12/19 4:19 a.m.35 views

RLSA-2024:10950 Moderate: php:8.1 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: host/secure cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 php: passwordverify can erroneously return true, opening ATO risk CVE-2024-3096 php: Filter bypass in filtervar...

7.5CVSS6.8AI score0.3786EPSS
Exploits5References7
OSV
OSV
added 2024/12/19 4:19 a.m.26 views

RLSA-2024:10949 Moderate: php:8.2 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: host/secure cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 php: passwordverify can erroneously return true, opening ATO risk CVE-2024-3096 php: Filter bypass in filtervar...

7.5CVSS6.8AI score0.3786EPSS
Exploits5References7
Tenable Nessus
Tenable Nessus
added 2024/12/19 12:0 a.m.23 views

AlmaLinux 8 : php:7.4 (ALSA-2024:10952)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2024:10952 advisory. php: 1-byte array overrun in common path resolve code CVE-2023-0568 php: Passwordverify always return true with some hash CVE-2023-0567 php: Missing erro...

9.8CVSS7.8AI score0.49336EPSS
Exploits13References13
Tenable Nessus
Tenable Nessus
added 2024/12/13 12:0 a.m.23 views

Oracle Linux 8 : php:7.4 (ELSA-2024-10952)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-10952 advisory. - Fix cgi.forceredirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered...

9.8CVSS7.7AI score0.49336EPSS
Exploits13References12
Tenable Nessus
Tenable Nessus
added 2024/12/11 12:0 a.m.23 views

RHEL 9 : php:8.2 (RHSA-2024:10949)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:10949 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: host/secure cookie bypass due to...

7.5CVSS7.2AI score0.49336EPSS
Exploits7References16
Tenable Nessus
Tenable Nessus
added 2024/12/11 12:0 a.m.20 views

RHEL 8 : php:7.4 (RHSA-2024:10952)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:10952 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: 1-byte array overrun in common...

9.8CVSS7.9AI score0.49336EPSS
Exploits13References26
OSV
OSV
added 2024/12/11 12:0 a.m.23 views

ALSA-2024:10951 Moderate: php:8.2 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: host/secure cookie bypass due to partial CVE-2022-31629 fix CVE-2024-2756 php: passwordverify can erroneously return true, opening ATO risk CVE-2024-3096 php: Filter bypass in filtervar...

7.5CVSS6.7AI score0.49336EPSS
Exploits7References14
Tenable Nessus
Tenable Nessus
added 2024/12/11 12:0 a.m.24 views

RHEL 9 : php:8.1 (RHSA-2024:10950)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:10950 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: host/secure cookie bypass due to...

7.5CVSS7.2AI score0.49336EPSS
Exploits7References15
CBLMariner
CBLMariner
added 2024/11/08 9:38 p.m.18 views

CVE-2024-8927 affecting package php for versions less than 8.3.12-1

CVE-2024-8927 affecting package php for versions less than 8.3.12-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.01077EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/11/02 12:0 a.m.13 views

CBL Mariner 2.0 Security Update: php (CVE-2024-8927)

The version of php installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-8927 advisory. - In PHP versions 8.1. before 8.1.30, 8.2. before 8.2.24, 8.3. before 8.3.12, HTTPREDIRECTSTATUS variable is used ...

7.5CVSS7.3AI score0.01077EPSS
Exploits1References2
CBLMariner
CBLMariner
added 2024/11/01 4:41 p.m.14 views

CVE-2024-8927 affecting package php for versions less than 8.1.30-1

CVE-2024-8927 affecting package php for versions less than 8.1.30-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.01077EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/10/23 12:0 a.m.23 views

Slackware Linux 15.0 php81 Multiple Vulnerabilities (SSA:2024-297-01)

The version of php81 installed on the remote host is prior to 8.1.30. It is, therefore, affected by multiple vulnerabilities as referenced in the SSA:2024-297-01 advisory. New php81 packages are available for Slackware 15.0 to fix security issues. Tenable has extracted the preceding description...

9.8CVSS7.6AI score0.99987EPSS
Exploits68References6
CloudLinux
CloudLinux
added 2024/10/22 8:21 p.m.21 views

php: Fix of CVE-2024-8927

CVE-2024-8927: Fix bypass of cgi.forceredirect configuration...

7.5CVSS7.4AI score0.01077EPSS
Exploits1
Rows per page
Query Builder