PHP — популярный язык сценариев общего назначения, особенно подходящий для веб-разработки.

Релизный цикл, информация об уязвимостях

Продукт: PHP

Вендор: php

График релизов

Недавние уязвимости PHP

Количество 3 889

CVE-2019-9640

около 7 лет назад

An issue was discovered in the EXIF component in PHP before 7.1.27, 7. ...

CVSS3: 7.5

EPSS: Средний

CVE-2019-9639

около 7 лет назад

An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling the data_len variable.

CVSS3: 7.5

EPSS: Средний

CVE-2019-9639

около 7 лет назад

An issue was discovered in the EXIF component in PHP before 7.1.27, 7. ...

CVSS3: 7.5

EPSS: Средний

CVE-2019-9638

около 7 лет назад

An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling the maker_note->offset relationship to value_len.

CVSS3: 7.5

EPSS: Средний

CVE-2019-9638

около 7 лет назад

An issue was discovered in the EXIF component in PHP before 7.1.27, 7. ...

CVSS3: 7.5

EPSS: Средний

CVE-2019-9637

около 7 лет назад

An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. Due to the way rename() across filesystems is implemented, it is possible that file being renamed is briefly available with wrong permissions while the rename is ongoing, thus enabling unauthorized users to access the data.

CVSS3: 7.5

EPSS: Низкий

CVE-2019-9637

около 7 лет назад

An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and ...

CVSS3: 7.5

EPSS: Низкий

CVE-2019-9641

около 7 лет назад

An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_TIFF.

CVSS3: 9.8

EPSS: Средний

CVE-2019-9638

около 7 лет назад

An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling the maker_note->offset relationship to value_len.

CVSS3: 7.5

EPSS: Средний

CVE-2019-9640

около 7 лет назад

An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an Invalid Read in exif_process_SOFn.

CVSS3: 7.5

EPSS: Средний

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2019-9640 An issue was discovered in the EXIF component in PHP before 7.1.27, 7. ...	CVSS3: 7.5	16% Средний	около 7 лет назад
CVE-2019-9639 An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling the data_len variable.	CVSS3: 7.5	15% Средний	около 7 лет назад
CVE-2019-9639 An issue was discovered in the EXIF component in PHP before 7.1.27, 7. ...	CVSS3: 7.5	15% Средний	около 7 лет назад
CVE-2019-9638 An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling the maker_note->offset relationship to value_len.	CVSS3: 7.5	16% Средний	около 7 лет назад
CVE-2019-9638 An issue was discovered in the EXIF component in PHP before 7.1.27, 7. ...	CVSS3: 7.5	16% Средний	около 7 лет назад
CVE-2019-9637 An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. Due to the way rename() across filesystems is implemented, it is possible that file being renamed is briefly available with wrong permissions while the rename is ongoing, thus enabling unauthorized users to access the data.	CVSS3: 7.5	10% Низкий	около 7 лет назад
CVE-2019-9637 An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and ...	CVSS3: 7.5	10% Низкий	около 7 лет назад
CVE-2019-9641 An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_TIFF.	CVSS3: 9.8	52% Средний	около 7 лет назад
CVE-2019-9638 An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling the maker_note->offset relationship to value_len.	CVSS3: 7.5	16% Средний	около 7 лет назад
CVE-2019-9640 An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. There is an Invalid Read in exif_process_SOFn.	CVSS3: 7.5	16% Средний	около 7 лет назад

Уязвимостей на страницу