Executive Summary



This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
Informations
NameCVE-2017-9120First vendor Publication2018-08-02
VendorCveLast vendor Modification2019-08-19

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score7.5Attack RangeNetwork
Cvss Impact Score6.4Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

PHP 7.x through 7.1.5 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a long string because of an Integer overflow in mysqli_real_escape_string.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9120

CWE : Common Weakness Enumeration

%idName
100 %CWE-190Integer Overflow or Wraparound (CWE/SANS Top 25)

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1
Application97

Sources (Detail)

SourceUrl
CONFIRM https://security.netapp.com/advisory/ntap-20181107-0003/
MISC https://bugs.php.net/bug.php?id=74544
REDHAT https://access.redhat.com/errata/RHSA-2019:2519

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
DateInformations
2019-08-19 17:19:32
  • Multiple Updates
2019-06-08 12:09:48
  • Multiple Updates
2019-03-19 17:19:07
  • Multiple Updates
2018-11-08 17:19:11
  • Multiple Updates
2018-10-01 17:19:20
  • Multiple Updates
2018-10-01 09:18:40
  • Multiple Updates
2018-08-02 21:19:49
  • First insertion