Lucene search
K

292 matches found

Tenable Nessus
Tenable Nessus
added 2020/12/02 12:0 a.m.39 views

Fedora 32 : 1:php-pear (2020-5271a896ff)

Fix Bug 27002: Filename manipulation vulnerabilities CVE-2020-28948 / CVE-2020-28949 mrook Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...

7.8CVSS7.5AI score0.84554EPSS
Exploits5References3
Tenable Nessus
Tenable Nessus
added 2020/12/02 12:0 a.m.38 views

Fedora 33 : 1:php-pear (2020-f351eb14e3)

Fix Bug 27002: Filename manipulation vulnerabilities CVE-2020-28948 / CVE-2020-28949 mrook Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...

7.8CVSS7.5AI score0.84554EPSS
Exploits5References3
OpenVAS
OpenVAS
added 2020/11/24 12:0 a.m.22 views

Debian: Security Advisory (DLA-2465-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.1AI score0.84554EPSS
Exploits5References5
Tenable Nessus
Tenable Nessus
added 2020/11/24 12:0 a.m.32 views

Debian DLA-2465-1 : php-pear security update

It was discovered that there was a filename sanitisation issue in php-pear, a distribution system for reusable PHP components. For Debian 9 'Stretch', this problem has been fixed in version 1:1.10.1+submodules+notgz-9+deb9u2. We recommend that you upgrade your php-pear packages. For the detailed...

7.8CVSS7.5AI score0.84554EPSS
Exploits5References5
Debian
Debian
added 2020/11/23 11:15 a.m.48 views

[SECURITY] [DLA 2465-1] php-pear security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2465-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb November 23, 2020 https://wiki.debian.org/LTS -...

7.8CVSS8AI score0.84554EPSS
Exploits5
OSV
OSV
added 2020/11/23 12:0 a.m.37 views

DLA-2465-1 php-pear - security update

Bulletin has no description...

7.8CVSS7.9AI score0.84554EPSS
Exploits5
Rockylinux
Rockylinux
added 2020/11/03 12:30 p.m.12 views

new module: php:7.4

An update is available for php-pear, php-pecl-rrd, php, php-pecl-apcu, php-pecl-xdebug, libzip, php-pecl-zip. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Thi...

1.5AI score
Exploits0
Rockylinux
Rockylinux
added 2020/04/28 9:5 a.m.18 views

7.3 enhancement update

An update is available for php-pear, php-pecl-rrd, php-pecl-apcu, php-pecl-xdebug, libzip, php-pecl-zip. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For...

1.8AI score
Exploits0
Veracode
Veracode
added 2020/04/10 1:5 a.m.24 views

Symlink Attack

php-pear is vulnerable to symlink attack. It was found that the "pear" command created temporary files in an insecure way when installing packages. A malicious, local user could use this flaw to conduct a symbolic link attack, allowing them to overwrite the contents of arbitrary files accessible ...

3.3CVSS3.2AI score0.00492EPSS
Exploits1References21Affected Software1
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for php-pear (EulerOS-SA-2019-1121)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.3AI score0.19207EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.29 views

Huawei EulerOS: Security Advisory for php-pear (EulerOS-SA-2019-1147)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS8.3AI score0.19207EPSS
Exploits5References2
NVD
NVD
added 2019/12/05 7:15 p.m.22 views

CVE-2012-1105

An Information Disclosure vulnerability exists in the Jasig Project php-pear-CAS 1.2.2 package in the /tmp directory. The Central Authentication Service client library archives the debug logging file in an insecure manner...

5.5CVSS5.3AI score0.00464EPSS
Exploits0References5
Prion
Prion
added 2019/12/05 7:15 p.m.18 views

Information disclosure

An Information Disclosure vulnerability exists in the Jasig Project php-pear-CAS 1.2.2 package in the /tmp directory. The Central Authentication Service client library archives the debug logging file in an insecure manner...

2.1CVSS6.7AI score0.00464EPSS
Exploits0References5Affected Software3
UbuntuCve
UbuntuCve
added 2019/12/05 7:15 p.m.30 views

CVE-2012-1105

An Information Disclosure vulnerability exists in the Jasig Project php-pear-CAS 1.2.2 package in the /tmp directory. The Central Authentication Service client library archives the debug logging file in an insecure manner...

5.5CVSS6.1AI score0.00464EPSS
Exploits0References2
OSV
OSV
added 2019/12/05 7:15 p.m.4 views

UBUNTU-CVE-2012-1105

An Information Disclosure vulnerability exists in the Jasig Project php-pear-CAS 1.2.2 package in the /tmp directory. The Central Authentication Service client library archives the debug logging file in an insecure manner...

5.5CVSS5.8AI score0.00464EPSS
Exploits0References3
CVE
CVE
added 2019/12/05 6:26 p.m.73 views

CVE-2012-1105

CVE-2012-1105: A information-disclosure vulnerability exists in the Jasig php-pear-CAS 1.2.2 package where the Central Authentication Service client library archives the debug logging file insecurely in /tmp, exposing partial confidentiality. Affected component: phpCAS library; root cause: insecu...

5.5CVSS5AI score0.00464EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2019/12/05 6:26 p.m.29 views

CVE-2012-1105

An Information Disclosure vulnerability exists in the Jasig Project php-pear-CAS 1.2.2 package in the /tmp directory. The Central Authentication Service client library archives the debug logging file in an insecure manner...

5.2AI score0.00464EPSS
Exploits0References5
Rockylinux
Rockylinux
added 2019/11/06 1:15 p.m.49 views

php:7.3 security update

An update is available for libzip, php-pear, php-pecl-apcu, php-pecl-zip. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list PHP is an HTML-embedded scripting...

9.8CVSS0.6AI score0.9947EPSS
Exploits55
Rockylinux
Rockylinux
added 2019/11/06 1:15 p.m.52 views

php:7.2 security update

An update is available for libzip, php-pear, php-pecl-apcu, php-pecl-zip. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list PHP is an HTML-embedded scripting...

9.8CVSS0.6AI score0.9947EPSS
Exploits55
Rockylinux
Rockylinux
added 2019/11/05 5:37 p.m.8 views

new module: php:7.3

An update is available for libzip, php-pear, php-pecl-apcu, php-pecl-zip. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list This enhancement update adds the php:7....

1.5AI score
Exploits0
Rows per page
Query Builder