Lucene search
K

31 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/13 12:0 a.m.10 views

TencentOS Server 3: php:7.4 (TSSA-2026:0172)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0172 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

9.8CVSS7.7AI score0.02286EPSS
Exploits10References14
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 7 : php-5.4.16-48.0.5.el7.AXS7 (AXSA:2025-9709:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9709:01 advisory. CVE-2024-8929: fix various heap buffer over-reads CVEs: CVE-2024-8929 In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, a hostile...

5.8CVSS6AI score0.02286EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/05/26 12:0 a.m.11 views

Fedora: Security Advisory (FEDORA-2024-3891a08c9e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.8AI score0.02286EPSS
Exploits4References64
Oracle linux
Oracle linux
added 2025/05/22 12:0 a.m.17 views

php security update

8.0.30-3 - Fix libxml streams use wrong content-type header when requesting a redirected resource CVE-2025-1219 - Fix Stream HTTP wrapper header check might omit basic auth header CVE-2025-1736 - Fix Stream HTTP wrapper truncate redirect location to 1024 bytes CVE-2025-1861 - Fix Streams HTTP...

6.3CVSS8.5AI score0.49336EPSS
Exploits12
AlmaLinux
AlmaLinux
added 2025/05/13 12:0 a.m.10 views

Moderate: php:8.2 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: Leak partial content of the heap through heap buffer over-read in mysqlnd CVE-2024-8929 php: Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233 php: Configuring ...

9.8CVSS7.5AI score0.02286EPSS
Exploits5References18
Tenable Nessus
Tenable Nessus
added 2025/05/13 12:0 a.m.9 views

RHEL 9 : php (RHSA-2025:7315)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:7315 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: host/secure cookie bypass due to...

8.2CVSS7.6AI score0.49336EPSS
Exploits10References23
Tenable Nessus
Tenable Nessus
added 2025/04/28 12:0 a.m.22 views

RHEL 9 : php:8.1 (RHSA-2025:4263)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:4263 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: Leak partial content of the heap...

9.8CVSS7.6AI score0.02286EPSS
Exploits5References19
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-8929

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, a hostile MySQL server can cause the client to disclose the content of its heap...

5.8CVSS7AI score0.02286EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.8 views

Azure Linux 3.0 Security Update: php (CVE-2024-8929)

The version of php installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-8929 advisory. - In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, a hostile MySQL server can cause the...

5.8CVSS7.2AI score0.02286EPSS
Exploits1References2
F5 Networks
F5 Networks
added 2025/02/06 12:31 a.m.18 views

K000149655: PHP vulnerabilities CVE-2024-11236, CVE-2024-8929, CVE-2024-8932

Security Advisory Description CVE-2024-11236 In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, uncontrolled long string inputs to ldapescape function on 32-bit systems can cause an integer overflow, resulting in an out-of-bounds write. CVE-2024-8929 In PHP versions 8.1...

9.8CVSS6.5AI score0.02286EPSS
Exploits2
OSV
OSV
added 2025/02/04 7:8 p.m.9 views

CLSA-2025-1738696117 php: Fix of CVE-2024-8929

CVE-2024-8929: fix various heap buffer over-reads for mysqlnd - Modify spec and run-tests.php to fix extension loading during testing...

5.8CVSS6.5AI score0.02286EPSS
Exploits1References1
Ubuntu
Ubuntu
added 2025/01/29 3:58 p.m.19 views

USN-7157-3: PHP vulnerabilities

USN-7157-1 fixed vulnerabilities in PHP versions 7.4, 8.1, and 8.3. This update provides the corresponding updates for PHP version 7.0. Original advisory details: It was discovered that PHP incorrectly handled certain inputs when processed with convert.quoted-printable decode filters. An attacker...

9.8CVSS7.8AI score0.02286EPSS
Exploits3
CBLMariner
CBLMariner
added 2024/12/17 11:15 p.m.16 views

CVE-2024-8929 affecting package php for versions less than 8.3.14-1

CVE-2024-8929 affecting package php for versions less than 8.3.14-1. An upgraded version of the package is available that resolves this issue...

5.8CVSS6.8AI score0.02286EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/12/12 12:0 a.m.14 views

SUSE SLES15 / openSUSE 15 Security Update : php8 (SUSE-SU-2024:4136-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4136-1 advisory. - CVE-2024-11233: Single byte overread with convert.quoted-printable-decode filter bsc1233702. - CVE-2024-11234:...

9.8CVSS7.4AI score0.02286EPSS
Exploits4References14
Tenable Nessus
Tenable Nessus
added 2024/12/12 12:0 a.m.16 views

Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 : PHP vulnerabilities (USN-7157-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7157-1 advisory. It was discovered that PHP incorrectly handled certain inputs when processed with convert.quoted-printable decode filters...

9.8CVSS7.7AI score0.02286EPSS
Exploits4References6
Tenable Nessus
Tenable Nessus
added 2024/12/12 12:0 a.m.15 views

SUSE SLES15: apache2-mod_php7 / php7 / php7-bcmath / php7-bz2 / php7-calendar / etc (SUSE-SU-2024:4146-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4146-1 advisory. - CVE-2024-11233: Single byte overread with convert.quoted-printable-decode filter bsc1233702. - CVE-2024-11234:...

8.2CVSS6.3AI score0.02286EPSS
Exploits3References10
Tenable Nessus
Tenable Nessus
added 2024/12/09 12:0 a.m.9 views

CBL Mariner 2.0 Security Update: php (CVE-2024-8929)

The version of php installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-8929 advisory. - In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, a hostile MySQL server can cause the...

5.8CVSS7.2AI score0.02286EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2024/12/09 12:0 a.m.24 views

Debian: Security Advisory (DLA-3986-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.9AI score0.02286EPSS
Exploits4References2
CBLMariner
CBLMariner
added 2024/12/08 12:48 p.m.15 views

CVE-2024-8929 affecting package php for versions less than 8.1.31-1

CVE-2024-8929 affecting package php for versions less than 8.1.31-1. An upgraded version of the package is available that resolves this issue...

5.8CVSS6.5AI score0.02286EPSS
Exploits1
OpenVAS
OpenVAS
added 2024/12/06 12:0 a.m.18 views

openSUSE Security Advisory (SUSE-SU-2024:4215-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS6.6AI score0.02286EPSS
Exploits3References6
Rows per page
Query Builder