Описание
A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow.
Ссылки
- Vendor Advisory
- Issue Tracking
- Third Party Advisory
- Vendor Advisory
- Issue Tracking
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 8.0.22 (исключая)
cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:a:redhat:software_collections:-:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
EPSS
Процентиль: 28%
0.00099
Низкий
6.2 Medium
CVSS3
5.5 Medium
CVSS3
Дефекты
CWE-119
CWE-787
Связанные уязвимости
CVSS3: 6.2
ubuntu
почти 2 года назад
A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow.
CVSS3: 6.2
redhat
около 3 лет назад
A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow.
CVSS3: 6.2
debian
почти 2 года назад
A vulnerability was found in PHP where setting the environment variabl ...
EPSS
Процентиль: 28%
0.00099
Низкий
6.2 Medium
CVSS3
5.5 Medium
CVSS3
Дефекты
CWE-119
CWE-787