Lucene search
K

6 matches found

Wolfi
Wolfi
added 2026/05/20 7:48 p.m.17 views

CVE-2026-7259 vulnerabilities

Vulnerabilities for packages: php...

6.5CVSS5.8AI score0.00202EPSS
Exploits0
OSV
OSV
added 2026/05/18 7:58 a.m.4 views

SUSE-SU-2026:1958-1 Security update for php8

This update for php8 fixes the following issues - CVE-2025-14179: improper handling of NULL bytes by the PDO Firebird driver when preparing SQL queries can lead to SQL injection bsc1264778. - CVE-2026-6722: use-after-free in SOAP using Apache map can lead to remote code execution bsc1264776. -...

9.8CVSS6.5AI score0.0078EPSS
Exploits1References17
Tenable Nessus
Tenable Nessus
added 2026/05/16 12:0 a.m.16 views

SUSE SLES16 Security Update : php8 (SUSE-SU-2026:21612-1)

The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:21612-1 advisory. This update for php8 fixes the following issues - CVE-2025-14179: improper handling of NULL bytes by the PDO Firebird driver when...

9.8CVSS6.5AI score0.0078EPSS
Exploits1References31
OSV
OSV
added 2026/05/10 5:16 a.m.10 views

DEBIAN-CVE-2026-7259

In PHP versions 8.2. before 8.2.31, 8.3. before 8.3.31, 8.4. before 8.4.21, and 8.5. before 8.5.6, a mismatch between encoding lists in Oniguruma and mbfl leads to a NULL pointer dereference, resulting in a segmentation fault and denial of service. The vulnerability is exploitable when...

6.5CVSS5.8AI score0.00202EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/10 4:13 a.m.9 views

CVE-2026-7259

In PHP versions 8.2. before 8.2.31, 8.3. before 8.3.31, 8.4. before 8.4.21, and 8.5. before 8.5.6, a mismatch between encoding lists in Oniguruma and mbfl leads to a NULL pointer dereference, resulting in a segmentation fault and denial of service. The vulnerability is exploitable when...

2.1CVSS5.8AI score0.00202EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2026-7259

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In PHP versions 8.2. before 8.2.31, 8.3. before 8.3.31, 8.4. before 8.4.21, and 8.5. before 8.5.6, a mismatch between encoding lists in Oniguruma and mbfl leads...

6.5CVSS5.5AI score0.00202EPSS
Exploits0References2
Rows per page
Query Builder