6 matches found
Amazon Linux 2 : php (ALASPHP8.0-2024-010)
The version of php installed on the remote host is prior to 8.0.24-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2PHP8.0-2024-010 advisory. 2024-02-15: CVE-2022-31629 was added to this advisory. 2024-02-15: CVE-2022-31628 was added to this advisory. In PHP...
CVE-2022-31629
In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site attackers to set a standard insecure cookie in the victim's browser which is treated as a Host- or Secure- cookie by PHP applications...
CVE-2012-5627 affecting package mysql for versions less than 8.0.24-1
CVE-2012-5627 affecting package mysql for versions less than 8.0.24-1. A patched version of the package is available...
CVE-2021-2357 affecting package mysql 8.0.24-1
CVE-2021-2357 affecting package mysql 8.0.24-1. An upgraded version of the package is available that resolves this issue...
Oracle MySQL Server 8.0 <= 8.0.23 Security Update (cpuapr2021) - Linux
Oracle MySQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...
AZL-6692 CVE-2012-5627 affecting package mysql for versions less than 8.0.24-1
Oracle MySQL and MariaDB 5.5.x before 5.5.29, 5.3.x before 5.3.12, and 5.2.x before 5.2.14 does not modify the salt during multiple executions of the changeuser command within the same connection which makes it easier for remote authenticated users to conduct brute force password guessing attacks...