Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2007-2728

Опубликовано: 16 мая 2007
Источник: nvd
CVSS2: 5
EPSS Низкий

Описание

The soap extension in PHP calls php_rand_r with an uninitialized seed variable, which has unknown impact and attack vectors, a related issue to the mcrypt_create_iv issue covered by CVE-2007-2727. Note: The PHP team argue that this is not a valid security issue.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:php:php:-:*:*:*:*:*:*:*
Конфигурация 2

Одно из

cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:6.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*

EPSS

Процентиль: 79%
0.01266
Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

ubuntu логотип

CVE-2007-2728

ubuntu
около 18 лет назад

The soap extension in PHP calls php_rand_r with an uninitialized seed variable, which has unknown impact and attack vectors, a related issue to the mcrypt_create_iv issue covered by CVE-2007-2727.

debian логотип

CVE-2007-2728

debian
около 18 лет назад

The soap extension in PHP calls php_rand_r with an uninitialized seed ...

github логотип

GHSA-g6ph-v22v-23j6

github
около 3 лет назад

The soap extension in PHP calls php_rand_r with an uninitialized seed variable, which has unknown impact and attack vectors, a related issue to the mcrypt_create_iv issue covered by CVE-2007-2727.

EPSS

Процентиль: 79%
0.01266
Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-noinfo