Lucene search
K

10 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in PHP 8.1

In PHP versions 8.3. before 8.3.19 and 8.4. before 8.4.5, a code sequence involving the set handler or ??= operator and exceptions can lead to a use-after-free vulnerability. If a third party can control the memory layout, for example by providing specially crafted inputs to the script, it could...

9.2CVSS7.5AI score0.01263EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.12 views

PT-2025-53108

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the ocxl module related to a potential reference count leak within the afu ioctl function. Specifically, the eventfd ctx put function was not being...

7.8CVSS6.3AI score0.00465EPSS
Exploits2References895
OSV
OSV
added 2025/08/11 1:54 p.m.3 views

BIT-LIBPHP-2024-11235 Reference counting in php_request_shutdown causes Use-After-Free

In PHP versions 8.3. before 8.3.19 and 8.4. before 8.4.5, a code sequence involving set handler or ??= operator and exceptions can lead to a use-after-free vulnerability. If the third party can control the memory layout leading to this, for example by supplying specially crafted inputs to the...

9.2CVSS8.1AI score0.01263EPSS
Exploits1References2
OSV
OSV
added 2025/04/29 8:1 p.m.5 views

CLSA-2025-1745956866 php: Fix of CVE-2024-11235

CVE-2024-11235: Fix use-after-free vulnerability related to set handler and ??= operator to prevent potential remote code execution...

9.2CVSS6.4AI score0.01263EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2025/04/04 6:15 p.m.7 views

CVE-2024-11235

In PHP versions 8.3. before 8.3.19 and 8.4. before 8.4.5, a code sequence involving set handler or ??= operator and exceptions can lead to a use-after-free vulnerability. If the third party can control the memory layout leading to this, for example by supplying specially crafted inputs to the...

9.2CVSS7.5AI score0.01263EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2025/04/04 6:15 p.m.2 views

DEBIAN-CVE-2024-11235

In PHP versions 8.3. before 8.3.19 and 8.4. before 8.4.5, a code sequence involving set handler or ??= operator and exceptions can lead to a use-after-free vulnerability. If the third party can control the memory layout leading to this, for example by supplying specially crafted inputs to the...

8.1CVSS8.3AI score0.01263EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/04/04 12:0 a.m.6 views

PHP 安全漏洞

PHP is a scripting language for PHP that is executed server-side. A security vulnerability exists in PHP versions prior to 8.3.19 and prior to 8.4.5, which stems from a code sequence involving the set handler or the ??? = operators and exceptions in a code sequence could lead to a post-release...

9.2CVSS7.8AI score0.01263EPSS
Exploits1References1
OSV
OSV
added 2025/03/14 12:0 a.m.2 views

UBUNTU-CVE-2024-11235

In PHP versions 8.3. before 8.3.19 and 8.4. before 8.4.5, a code sequence involving set handler or ??= operator and exceptions can lead to a use-after-free vulnerability. If the third party can control the memory layout leading to this, for example by supplying specially crafted inputs to the...

9.2CVSS7.5AI score0.01263EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2023/11/14 3:53 p.m.4 views

tpm2-tss: Buffer Overlow in TSS2_RC_Decode

A flaw was found in tpm2-tss, which is an open source software implementation of the Trusted Computing Group TCG Trusted Platform Module TPM 2 Software Stack TSS2. In affected versions, Tss2RCSetHandler and Tss2RCDecode index into the layerhandler with an 8-bit layer number, but the array only ha...

6.4CVSS7.5AI score0.00519EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2018/03/28 12:0 a.m.8 views

The vulnerability of the NVBUScheduleSet request handler in the software for data archiving and restoration by NetVault Backup allows a perpetrator to execute arbitrary code.

The vulnerability of the NVBUScheduleSet request handler in software for data archiving and restoration by NetVault Backup is related to insufficient protection of the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

9.8CVSS6.1AI score0.03933EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder