This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:php:php:7.0.11:- |
| Detail | |||
|---|---|---|---|
| Vendor | Php | First view | 2016-09-28 |
| Product | Php | Last view | 2019-07-10 |
| Version | 7.0.11 | Type | Application |
| Edition | |||
| Language | |||
| Update | - | ||
| CPE Product | cpe:/a:php:php | ||
Activity : Overall
Related : CVE
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 5 | 2019-07-10 | CVE-2017-7189 | Network | Low | None Requ... | |
| 6.8 | 2019-03-11 | CVE-2019-9675 | Network | Medium | None Requ... | |
| 7.5 | 2019-03-08 | CVE-2019-9641 | Network | Low | None Requ... | |
| 5 | 2019-03-08 | CVE-2019-9639 | Network | Low | None Requ... | |
| 5 | 2019-03-08 | CVE-2019-9638 | Network | Low | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentication | ||
|---|---|---|---|---|---|---|
| 5 | 2019-03-08 | CVE-2019-9637 | Network | Low | None Requ... | |
| 5 | 2019-02-22 | CVE-2019-9024 | Network | Low | None Requ... | |
| 7.5 | 2019-02-22 | CVE-2019-9023 | Network | Low | None Requ... | |
| 5 | 2019-02-22 | CVE-2019-9022 | Network | Low | None Requ... | |
| 7.5 | 2019-02-22 | CVE-2019-9021 | Network | Low | None Requ... | |
| 7.5 | 2019-02-22 | CVE-2019-9020 | Network | Low | None Requ... | |
| 6.8 | 2019-01-26 | CVE-2019-6977 | Network | Medium | None Requ... | |
| 5 | 2018-12-07 | CVE-2018-19935 | Network | Low | None Requ... | |
| 5 | 2018-11-20 | CVE-2018-19396 | Network | Low | None Requ... | |
| 4.3 | 2018-09-16 | CVE-2018-17082 | Network | Medium | None Requ... | |
| 5 | 2018-08-03 | CVE-2018-14884 | Network | Low | None Requ... | |
| 5 | 2018-08-03 | CVE-2018-14883 | Network | Low | None Requ... | |
| 4.3 | 2018-08-02 | CVE-2018-14851 | Network | Medium | None Requ... | |
| 7.5 | 2018-08-02 | CVE-2017-9120 | Network | Low | None Requ... | |
| 6.8 | 2018-04-29 | CVE-2018-10549 | Network | Medium | None Requ... | |
| 5 | 2018-04-29 | CVE-2018-10548 | Network | Low | None Requ... | |
| 4.3 | 2018-04-29 | CVE-2018-10547 | Network | Medium | None Requ... | |
| 5 | 2018-04-29 | CVE-2018-10546 | Network | Low | None Requ... | |
| 1.9 | 2018-04-29 | CVE-2018-10545 | Local | Medium | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 21% (14) | CWE-125 | Out-of-bounds Read |
| 18% (12) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 10% (7) | CWE-416 | Use After Free |
| 9% (6) | CWE-476 | NULL Pointer Dereference |
| 7% (5) | CWE-190 | Integer Overflow or Wraparound |
| % | id | Name |
|---|---|---|
| 4% (3) | CWE-787 | Out-of-bounds Write |
| 4% (3) | CWE-200 | Information Exposure |
| 4% (3) | CWE-79 | Failure to Preserve Web Page Structure ('Cross-site Scripting') |
| 4% (3) | CWE-20 | Improper Input Validation |
| 3% (2) | CWE-400 | Uncontrolled Resource Consumption ('Resource Exhaustion') |
| 3% (2) | CWE-264 | Permissions, Privileges, and Access Controls |
| 1% (1) | CWE-770 | Allocation of Resources Without Limits or Throttling |
| 1% (1) | CWE-754 | Improper Check for Unusual or Exceptional Conditions |
| 1% (1) | CWE-681 | Incorrect Conversion between Numeric Types |
| 1% (1) | CWE-502 | Deserialization of Untrusted Data |
| 1% (1) | CWE-189 | Numeric Errors |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2019-10-23 | PHP http fopen stack buffer overflow attempt RuleID : 51578 - Type : SERVER-WEBAPP - Revision : 1 |
| 2019-05-07 | PHP gdImageColorMatch heap buffer overflow file download attempt RuleID : 49673 - Type : SERVER-OTHER - Revision : 1 |
| 2019-05-07 | PHP gdImageColorMatch heap buffer overflow file upload attempt RuleID : 49672 - Type : SERVER-OTHER - Revision : 1 |
| 2018-12-11 | CVE PHP infinite loop from use of stream filter and convert.iconv file upload... RuleID : 48354 - Type : SERVER-WEBAPP - Revision : 2 |
| 2018-08-14 | PHP unserialize integer overflow attempt RuleID : 47156 - Type : SERVER-WEBAPP - Revision : 1 |
| Date | Description |
|---|---|
| 2018-08-14 | PHP unserialize integer overflow attempt RuleID : 47155 - Type : SERVER-WEBAPP - Revision : 1 |
| 2018-06-26 | PHP .phar cross site scripting attempt RuleID : 46808 - Type : SERVER-WEBAPP - Revision : 2 |
| 2018-06-05 | PHP unserialize integer overflow attempt RuleID : 46470 - Type : SERVER-WEBAPP - Revision : 4 |
| 2018-06-05 | PHP unserialize integer overflow attempt RuleID : 46469 - Type : SERVER-WEBAPP - Revision : 3 |
| 2018-03-29 | PHP unserialize integer overflow attempt RuleID : 45769 - Type : SERVER-WEBAPP - Revision : 4 |
| 2018-03-29 | PHP unserialize integer overflow attempt RuleID : 45768 - Type : SERVER-WEBAPP - Revision : 4 |
| 2017-07-18 | Oniguruma expression parser out of bounds write attempt RuleID : 43182 - Type : FILE-OTHER - Revision : 2 |
| 2017-07-18 | Oniguruma expression parser out of bounds write attempt RuleID : 43181 - Type : FILE-OTHER - Revision : 2 |
| 2017-03-28 | PHP Exception Handling remote denial of service attempt RuleID : 41690 - Type : SERVER-OTHER - Revision : 2 |
| 2017-03-28 | PHP Exception Handling remote denial of service attempt RuleID : 41689 - Type : SERVER-OTHER - Revision : 2 |
| 2017-03-01 | PHP unserialize function use after free memory corruption vulnerability attempt RuleID : 41433 - Type : SERVER-WEBAPP - Revision : 2 |
| 2017-03-01 | PHP unserialize function use after free memory corruption vulnerability attempt RuleID : 41432 - Type : SERVER-WEBAPP - Revision : 2 |
| 2017-03-01 | PHP unserialize function use after free memory corruption vulnerability attempt RuleID : 41431 - Type : SERVER-WEBAPP - Revision : 2 |
| 2017-03-01 | PHP unserialize function use after free memory corruption vulnerability attempt RuleID : 41430 - Type : SERVER-WEBAPP - Revision : 2 |
Nessus® Vulnerability Scanner
This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
| id | Description |
|---|---|
| 2019-01-14 | Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2019-1147.nasl - Type : ACT_GATHER_INFO |
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-ee6707d519.nasl - Type : ACT_GATHER_INFO |
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-b6072889db.nasl - Type : ACT_GATHER_INFO |
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-1aeac808ce.nasl - Type : ACT_GATHER_INFO |
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-791c3cfe21.nasl - Type : ACT_GATHER_INFO |
| id | Description |
|---|---|
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-7ebfe1e6f2.nasl - Type : ACT_GATHER_INFO |
| 2019-01-03 | Name : The remote Fedora host is missing a security update. File : fedora_2018-dfe1f0bac6.nasl - Type : ACT_GATHER_INFO |
| 2018-12-17 | Name : The remote Debian host is missing a security update. File : debian_DLA-1608.nasl - Type : ACT_GATHER_INFO |
| 2018-12-11 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-4353.nasl - Type : ACT_GATHER_INFO |
| 2018-12-03 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201812-01.nasl - Type : ACT_GATHER_INFO |
| 2018-10-26 | Name : The remote EulerOS Virtualization host is missing a security update. File : EulerOS_SA-2018-1325.nasl - Type : ACT_GATHER_INFO |
| 2018-10-19 | Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2018-1090.nasl - Type : ACT_GATHER_INFO |
| 2018-09-27 | Name : The remote EulerOS host is missing a security update. File : EulerOS_SA-2018-1309.nasl - Type : ACT_GATHER_INFO |
| 2018-09-27 | Name : The remote EulerOS host is missing a security update. File : EulerOS_SA-2018-1310.nasl - Type : ACT_GATHER_INFO |
| 2018-09-24 | Name : The remote Fedora host is missing a security update. File : fedora_2018-25100b492c.nasl - Type : ACT_GATHER_INFO |
| 2018-09-20 | Name : The remote Debian host is missing a security update. File : debian_DLA-1509.nasl - Type : ACT_GATHER_INFO |
| 2018-09-18 | Name : The remote EulerOS Virtualization host is missing a security update. File : EulerOS_SA-2018-1249.nasl - Type : ACT_GATHER_INFO |
| 2018-09-04 | Name : The remote Debian host is missing a security update. File : debian_DLA-1490.nasl - Type : ACT_GATHER_INFO |
| 2018-08-24 | Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2018-1066.nasl - Type : ACT_GATHER_INFO |
| 2018-08-24 | Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2018-1067.nasl - Type : ACT_GATHER_INFO |
| 2018-08-17 | Name : The remote PhotonOS host is missing multiple security updates. File : PhotonOS_PHSA-2017-0021.nasl - Type : ACT_GATHER_INFO |
| 2018-08-17 | Name : The remote PhotonOS host is missing multiple security updates. File : PhotonOS_PHSA-2017-0029.nasl - Type : ACT_GATHER_INFO |
| 2018-08-10 | Name : The remote EulerOS host is missing a security update. File : EulerOS_SA-2018-1224.nasl - Type : ACT_GATHER_INFO |
| 2018-07-06 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-4240.nasl - Type : ACT_GATHER_INFO |
| 2018-07-03 | Name : The remote EulerOS host is missing a security update. File : EulerOS_SA-2018-1217.nasl - Type : ACT_GATHER_INFO |
