Количество 11
Количество 11
CVE-2015-8838
ext/mysqlnd/mysqlnd.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 uses a client SSL option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, a related issue to CVE-2015-3152.
CVE-2015-8838
ext/mysqlnd/mysqlnd.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 uses a client SSL option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, a related issue to CVE-2015-3152.
CVE-2015-8838
ext/mysqlnd/mysqlnd.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 uses a client SSL option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, a related issue to CVE-2015-3152.
CVE-2015-8838
ext/mysqlnd/mysqlnd.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5 ...
GHSA-gqmm-72rw-vrp2
ext/mysqlnd/mysqlnd.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 uses a client SSL option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, a related issue to CVE-2015-3152.
BDU:2022-02520
Уязвимость компонента ext/mysqlnd/mysqlnd.c интерпретатора языка программирования PHP, позволяющая нарушителю проводить спуфинг-атаки
openSUSE-SU-2016:1173-1
Security update for php5
SUSE-SU-2016:1166-1
Security update for php5
SUSE-SU-2016:1145-1
Security update for php53
SUSE-SU-2016:1581-1
Security update for php53
SUSE-SU-2016:1638-1
Security update for php53
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2015-8838 ext/mysqlnd/mysqlnd.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 uses a client SSL option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, a related issue to CVE-2015-3152. | CVSS3: 5.9 | 1% Низкий | больше 9 лет назад |
 | CVE-2015-8838 ext/mysqlnd/mysqlnd.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 uses a client SSL option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, a related issue to CVE-2015-3152. | CVSS2: 4.3 | 1% Низкий | больше 10 лет назад |
 | CVE-2015-8838 ext/mysqlnd/mysqlnd.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 uses a client SSL option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, a related issue to CVE-2015-3152. | CVSS3: 5.9 | 1% Низкий | больше 9 лет назад |
| CVE-2015-8838 ext/mysqlnd/mysqlnd.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5 ... | CVSS3: 5.9 | 1% Низкий | больше 9 лет назад |
| GHSA-gqmm-72rw-vrp2 ext/mysqlnd/mysqlnd.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 uses a client SSL option to mean that SSL is optional, which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, a related issue to CVE-2015-3152. | CVSS3: 5.9 | 1% Низкий | больше 3 лет назад |
 | BDU:2022-02520 Уязвимость компонента ext/mysqlnd/mysqlnd.c интерпретатора языка программирования PHP, позволяющая нарушителю проводить спуфинг-атаки | CVSS3: 5.9 | 1% Низкий | больше 9 лет назад |
 | openSUSE-SU-2016:1173-1 Security update for php5 | больше 9 лет назад | ||
| SUSE-SU-2016:1166-1 Security update for php5 | больше 9 лет назад | ||
| SUSE-SU-2016:1145-1 Security update for php53 | больше 9 лет назад | ||
| SUSE-SU-2016:1581-1 Security update for php53 | больше 9 лет назад | ||
| SUSE-SU-2016:1638-1 Security update for php53 | больше 9 лет назад |
Уязвимостей на страницу