CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

58 matches found

OpenVAS•added 2015/09/08 12:0 a.m.•58 views

Amazon Linux: Security Advisory (ALAS-2015-475)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8AI score0.87334EPSS

Exploits7References2

OpenVAS•added 2015/09/08 12:0 a.m.•20 views

Amazon Linux: Security Advisory (ALAS-2014-333)

5CVSS7.8AI score0.01128EPSS

Exploits1References2

OpenVAS•added 2015/09/08 12:0 a.m.•47 views

Amazon Linux: Security Advisory (ALAS-2014-434)

7.5CVSS7.1AI score0.55955EPSS

Exploits3References2

OpenVAS•added 2015/09/08 12:0 a.m.•24 views

Amazon Linux: Security Advisory (ALAS-2014-450)

5CVSS8.2AI score0.08075EPSS

Exploits0References2

OpenVAS•added 2015/09/08 12:0 a.m.•36 views

Amazon Linux: Security Advisory (ALAS-2014-313)

5CVSS7AI score0.30772EPSS

Exploits1References2

OpenVAS•added 2015/09/08 12:0 a.m.•27 views

Amazon Linux: Security Advisory (ALAS-2013-206)

5CVSS6.6AI score0.08454EPSS

Exploits1References2

OpenVAS•added 2015/09/08 12:0 a.m.•49 views

Amazon Linux: Security Advisory (ALAS-2015-463)

7.5CVSS7.9AI score0.8832EPSS

Exploits8References2

OpenVAS•added 2015/09/08 12:0 a.m.•48 views

Amazon Linux: Security Advisory (ALAS-2015-561)

10CVSS8.3AI score0.09888EPSS

Exploits3References3

OpenVAS•added 2015/09/08 12:0 a.m.•34 views

Amazon Linux: Security Advisory (ALAS-2014-343)

5CVSS7.8AI score0.01128EPSS

Exploits1References2

OpenVAS•added 2015/09/08 12:0 a.m.•33 views

Amazon Linux: Security Advisory (ALAS-2014-361)

5CVSS7AI score0.2611EPSS

Exploits0References2

OpenVAS•added 2015/09/08 12:0 a.m.•276 views

Amazon Linux: Security Advisory (ALAS-2015-493)

10CVSS8.3AI score0.8487EPSS

Exploits38References2

Tenable Nessus•added 2015/08/18 12:0 a.m.•47 views

Amazon Linux AMI : php54 (ALAS-2015-583) (BACKRONYM)

PHP process crashes when processing an invalid file with the 'phar' extension. CVE-2015-5589 As discussed upstream, mysqlnd is vulnerable to the attack described in https://www.duosecurity.com/blog/backronym-mysql-vulnerability. CVE-2015-3152 PHP versions before 5.5.27 and 5.4.43 contain buffer...

10CVSS8AI score0.39693EPSS

Exploits2References9

Tenable Nessus•added 2015/07/09 12:0 a.m.•54 views

Amazon Linux AMI : php54 (ALAS-2015-561)

Upstream reports that six security-related issues in PHP were fixed in this release, as well as several security issues in bundled sqlite library CVE-2015-3414 , CVE-2015-3415 , CVE-2015-3416. All PHP 5.4 users are encouraged to upgrade to this version. Please see the upstream release notes for...

10CVSS7.1AI score0.09888EPSS

Exploits3References8

RedHat Linux•added 2015/06/04 8:2 a.m.•84 views

Important: Red Hat Security Advisory: php54 security and bug fix update

Updated php54 collection packages that fix multiple security issues and several bugs are now available as part of Red Hat Software Collections 2. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give...

10CVSS7.4AI score0.8832EPSS

Exploits43References21

Amazon•added 2015/04/17 12:0 a.m.•64 views

Important: php54

Issue Overview: A buffer overflow vulnerability was found in PHP's phar PHP Archive implementation. See https://bugs.php.net/bug.php?id=69324 for more details. CVE-2015-2783 A use-after-free flaw was found in PHP's phar PHP Archive paths implementation. A malicious script author could possibly us...

7.5CVSS8.8AI score0.2878EPSS

Exploits5

Tenable Nessus•added 2015/04/17 12:0 a.m.•64 views

Amazon Linux AMI : php54 (ALAS-2015-506)

A use-after-free flaw was found in the way PHP's unserialize function processed data. If a remote attacker was able to pass crafted input to PHP's unserialize function, they could cause the PHP interpreter to crash or, possibly, execute arbitrary code. CVE-2015-0231 An integer overflow flaw,...

7.5CVSS7.7AI score0.87334EPSS

Exploits7References4

Amazon•added 2015/04/15 12:0 a.m.•82 views

Important: php54

Issue Overview: A use-after-free flaw was found in the way PHP's unserialize function processed data. If a remote attacker was able to pass crafted input to PHP's unserialize function, they could cause the PHP interpreter to crash or, possibly, execute arbitrary code. CVE-2015-0231 An integer...

7.5CVSS8.8AI score0.87334EPSS

Exploits7

Tenable Nessus•added 2015/03/17 12:0 a.m.•62 views

Amazon Linux AMI : php54 (ALAS-2015-493) (GHOST)

A heap-based buffer overflow was found in glibc's nsshostnamedigitsdots function, which is used by the gethostbyname and gethostbyname2 glibc function calls. A remote attacker able to make an application call either of these functions could use this flaw to execute arbitrary code with the...

10CVSS8.2AI score0.8487EPSS

Exploits38References3

Tenable Nessus•added 2015/02/13 12:0 a.m.•52 views

Amazon Linux AMI : php54 (ALAS-2015-475)

sapi/cgi/cgimain.c in the CGI component in PHP through 5.4.36, 5.5.x through 5.5.20, and 5.6.x through 5.6.4, when mmap is used to read a .php file, does not properly consider the mapping's length during processing of an invalid file that begins with a character and lacks a newline character, whi...

7.5CVSS7.7AI score0.8832EPSS

Exploits12References4

Tenable Nessus•added 2015/01/09 12:0 a.m.•57 views

Amazon Linux AMI : php54 (ALAS-2015-463)

Use-after-free vulnerability in the processnesteddata function in ext/standard/varunserializer.re in PHP before 5.4.36, 5.5.x before 5.5.20, and 5.6.x before 5.6.4 allows remote attackers to execute arbitrary code via a crafted unserialize call that leverages improper handling of duplicate keys...

10CVSS7AI score0.8832EPSS

Exploits8References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by