Lucene search
K

132 matches found

Tenable Nessus
Tenable Nessus
added 2022/11/14 12:0 a.m.32 views

AlmaLinux 8 : php:7.4 (ALSA-2022:7628)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2022:7628 advisory. php: Special character breaks path in xml parsing CVE-2021-21707 php: Use after free due to phpfilterfloat failing for ints CVE-2021-21708 php-pear:...

9.8CVSS7.3AI score0.73377EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2022/11/09 12:0 a.m.44 views

CentOS 8 : php:7.4 (CESA-2022:7628)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2022:7628 advisory. - php: Special character breaks path in xml parsing CVE-2021-21707 - php: Use after free due to phpfilterfloat failing for ints CVE-2021-21708 -...

9.8CVSS7.3AI score0.73377EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2022/11/08 12:0 a.m.80 views

RHEL 8 : php:7.4 (RHSA-2022:7628)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:7628 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later...

9.8CVSS7.3AI score0.73377EPSS
Exploits2References11
Tenable Nessus
Tenable Nessus
added 2022/10/05 12:0 a.m.67 views

PHP 7.4.x < 7.4.32 Multiple Vulnerabilities

According to its self-reported version number, the version of PHP installed on the remote host is 7.4.x prior to 7.4.32, 8.0.x prior to 8.0.24, or 8.1.x prior to 8.1.11. It is, therefore, affected by multiple vulnerabilities: - The phar uncompressor code would recursively uncompress quines gzip...

6.5CVSS7.1AI score0.49336EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2022/09/17 12:0 a.m.44 views

RHEL 8 : php:7.4 (RHSA-2022:6541)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:6541 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: ArchiveTar: allows an unserialization...

7.8CVSS7.5AI score0.84554EPSS
Exploits5References9
Oracle linux
Oracle linux
added 2022/09/16 12:0 a.m.42 views

php:7.4 security update

php-pear 1:1.10.13-1 - update PEAR to 1.10.13 - update ArchiveTar to 1.4.14...

7.8CVSS1.1AI score0.84554EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2022/09/16 12:0 a.m.39 views

Oracle Linux 8 : php:7.4 (ELSA-2022-6542)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-6542 advisory. php-pear 1:1.10.13-1 - update PEAR to 1.10.13 - update ArchiveTar to 1.4.14 Tenable has extracted the preceding description block directly from the...

7.8CVSS7.7AI score0.84554EPSS
Exploits5References4
RedHat Linux
RedHat Linux
added 2022/09/15 8:54 a.m.63 views

Moderate: Red Hat Security Advisory: php:7.4 security update

An update for the php:7.4 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.8CVSS7.3AI score0.84554EPSS
Exploits5References4
RedHat Linux
RedHat Linux
added 2022/09/15 8:38 a.m.58 views

Moderate: Red Hat Security Advisory: php:7.4 security update

An update for the php:7.4 module is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.8CVSS7.3AI score0.84554EPSS
Exploits5References4
AlmaLinux
AlmaLinux
added 2022/09/15 12:0 a.m.48 views

Moderate: php:7.4 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: ArchiveTar: allows an unserialization attack because phar: is blocked but PHAR: is not blocked CVE-2020-28948 ArchiveTar: improper filename sanitization leads to file overwrites CVE-2020-28949...

7.8CVSS7.8AI score0.84554EPSS
Exploits5References8
Tenable Nessus
Tenable Nessus
added 2022/09/15 12:0 a.m.36 views

CentOS 8 : php:7.4 (CESA-2022:6542)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2022:6542 advisory. - ArchiveTar: allows an unserialization attack because phar: is blocked but PHAR: is not blocked CVE-2020-28948 - ArchiveTar: improper filename...

7.8CVSS7.5AI score0.84554EPSS
Exploits5References4
Tenable Nessus
Tenable Nessus
added 2022/08/31 12:0 a.m.43 views

AlmaLinux 8 : php:7.4 (ALSA-2022:6158)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:6158 advisory. php: uninitialized array in pgqueryparams leading to RCE CVE-2022-31625 Tenable has extracted the preceding description block directly from the AlmaLinux security...

8.1CVSS8AI score0.03437EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/08/25 12:0 a.m.34 views

CentOS 8 : php:7.4 (CESA-2022:6158)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2022:6158 advisory. - php: Uninitialized array in pgqueryparams leading to RCE CVE-2022-31625 Note that Nessus has not tested for this issue but has instead relied only on the...

8.1CVSS8AI score0.03437EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/08/25 12:0 a.m.65 views

Oracle Linux 8 : php:7.4 (ELSA-2022-6158)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-6158 advisory. php 7.4.19-4 - fix uninitialized array in pgqueryparams leading to RCE CVE-2022-31625 Tenable has extracted the preceding description block directly from the...

8.1CVSS8AI score0.03437EPSS
Exploits1References2
OSV
OSV
added 2022/08/24 12:0 a.m.31 views

ALSA-2022:6158 Moderate: php:7.4 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: uninitialized array in pgqueryparams leading to RCE CVE-2022-31625 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...

8.1CVSS8.5AI score0.03437EPSS
Exploits1References4
Huntr
Huntr
added 2022/07/22 6:25 p.m.34 views

OS Command Injection user to admin

Summary Arbitrary commands can be injected when installing DokuWiki. Description Authenticated as "User" role users can inject commands. Injected commands are running as "admin" user. Prerequisite 1. Any user access 2. php 7.4 must be installed in order to install dokuwiki only admin can install...

6.5CVSS0.9AI score0.4749EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2022/07/11 12:0 a.m.137 views

Rocky Linux 8 : php:7.4 (RLSA-2022:5467)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:5467 advisory. - In PHP versions 7.4.x below 7.4.30, 8.0.x below 8.0.20, and 8.1.x below 8.1.7, when pdomysql extension with mysqlnd driver, if the third party is allowed to...

8.8CVSS9.2AI score0.5838EPSS
Exploits2References3
OSV
OSV
added 2022/07/08 12:0 a.m.56 views

DSA-5179-1 php7.4 - security update

Bulletin has no description...

8.8CVSS8.7AI score0.5838EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2022/07/01 12:0 a.m.34 views

RHEL 8 : php:7.4 (RHSA-2022:5471)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:5471 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: password of excessive length triggers buff...

8.8CVSS8.7AI score0.5838EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2022/06/30 12:0 a.m.52 views

RHEL 8 : php:7.4 (RHSA-2022:5467)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:5467 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: password of excessive length triggers buff...

8.8CVSS8.7AI score0.5838EPSS
Exploits2References4
Rows per page
Query Builder