CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

F5 Networks•added 2023/02/21 6:59 p.m.•115 views

K35799130: Multiple PHP vulnerabilities

Security Advisory Description CVE-2016-5399 The bzread function in ext/bz2/bz2.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial of service out-of-bounds write or execute arbitrary code via a crafted bz2 archive. CVE-2016-6291 The...

9.8CVSS9.6AI score0.13858EPSS

Exploits15

SUSE CVE•added 2023/02/15 4:59 a.m.•1 views

SUSE CVE-2016-6294

The localeacceptfromhttp function in ext/intl/locale/localemethods.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 does not properly restrict calls to the ICU ulocacceptLanguageFromHTTP function, which allows remote attackers to cause a denial of service out-of-bounds read or...

9.8CVSS9.2AI score0.06163EPSS

Exploits1References8

Tenable Nessus•added 2019/01/09 12:0 a.m.•69 views

PHP 5.6.x < 5.6.24 Multiple Vulnerabilities (httpoxy)

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.24. It is, therefore, affected by multiple vulnerabilities : - A man-in-the-middle vulnerability exists, known as 'httpoxy', due to a failure to properly resolve namespace conflicts in accordance wi...

9.8CVSS8.8AI score0.83504EPSS

Exploits17References14

Tenable Nessus•added 2019/01/02 12:0 a.m.•43 views

SUSE SLES12 Security Update : php7 (SUSE-SU-2017:1717-1)

This update for php7 fixes the following security issues : - CVE-2017-9224: stack out-of-bounds read occurs in matchat could lead to Denial of service bsc1040891 - CVE-2017-9226: heap out-of-bounds write orread occurs in nextstateval could lead to Denial of servicebsc1040889 - CVE-2017-9227: stac...

9.8CVSS7AI score0.06163EPSS

Exploits4References16