Описание
A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow.
Ссылки
- Vendor Advisory
- Issue Tracking
- Third Party Advisory
- Vendor Advisory
- Issue Tracking
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 8.0.22 (исключая)
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:a:redhat:software_collections:-:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
EPSS
Процентиль: 27%
0.0009
Низкий
6.2 Medium
CVSS3
5.5 Medium
CVSS3
Дефекты
CWE-119
CWE-787
Связанные уязвимости
CVSS3: 6.2
ubuntu
больше 1 года назад
A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow.
CVSS3: 6.2
redhat
почти 3 года назад
A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow.
CVSS3: 6.2
debian
больше 1 года назад
A vulnerability was found in PHP where setting the environment variabl ...
EPSS
Процентиль: 27%
0.0009
Низкий
6.2 Medium
CVSS3
5.5 Medium
CVSS3
Дефекты
CWE-119
CWE-787