Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistDebianCVELIST:CVE-2014-4721
HistoryJul 06, 2014 - 11:00 p.m.

CVE-2014-4721

2014-07-0623:00:00
debian
www.cve.org
3

8.3 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

81.1%

JSON

The phpinfo implementation in ext/standard/info.c in PHP before 5.4.30 and 5.5.x before 5.5.14 does not ensure use of the string data type for the PHP_AUTH_PW, PHP_AUTH_TYPE, PHP_AUTH_USER, and PHP_SELF variables, which might allow context-dependent attackers to obtain sensitive information from process memory by using the integer data type with crafted values, related to a “type confusion” vulnerability, as demonstrated by reading a private SSL key in an Apache HTTP Server web-hosting environment with mod_ssl and a PHP 5.3.x mod_php.

Related

cve 1
veracode 4
f5 2
nvd 1
ubuntucve 1
openvas 20
kaspersky 1
nessus 25
prion 1
ibm 3
debian 3
osv 2
mageia 2
securityvulns 2
centos 2
ubuntu 1
redhat 4
oraclelinux 2
suse 1
rosalinux 1
cve
cve
CVE-2014-4721
2014-07-06 23:55:02
veracode
veracode
Information Disclosure
2019-05-02 05:04:21
Denial Of Service (DoS)
2019-05-02 05:04:17
Denial Of Service (DoS)
2019-05-02 05:04:17
f5
f5
K17313 : PHP vulnerability CVE-2014-4721
2015-10-06 00:00:00
SOL17313 - PHP vulnerability CVE-2014-4721
2015-09-23 00:00:00
nvd
nvd
CVE-2014-4721
2014-07-06 23:55:02
ubuntucve
ubuntucve
CVE-2014-4721
2014-07-06 00:00:00
openvas
openvas
PHP Information Disclosure Vulnerability - 01 (Sep 2014)
2014-09-22 00:00:00
F5 BIG-IP - PHP vulnerability CVE-2014-4721
2015-09-25 00:00:00
Debian: Security Advisory (DLA-0018-1)
2023-03-08 00:00:00
kaspersky
kaspersky
KLA10289 OSI vulnerability in PHP
2014-07-06 00:00:00
nessus
nessus
F5 Networks BIG-IP : PHP vulnerability (SOL17313)
2015-09-24 00:00:00
openSUSE Security Update : openSUSE-2014- (openSUSE-2014--1)
2014-07-31 00:00:00
openSUSE Security Update : openSUSE-2014- (openSUSE-2014--1)
2014-07-31 00:00:00
prion
prion
Type confusion
2014-07-06 23:55:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in php affect IBM Flex System Manager (FSM): (CVE-2014-3597, CVE-2014-4721 and CVE-2014-5459)
2019-01-31 01:45:01
Security Bulletin: Network Intrusion Prevention System is affected by multiple D-BUS and PHP vulnerabilities (CVE-2014-3638, CVE-2014-3639, CVE-2014-3477, CVE-2014-5459, CVE-2014-3597, CVE-2014-4721)
2022-02-23 19:48:26
Security Bulletin: Multiple vulnerabilities in PHP as used by IBM QRadar Incident Forensics 7.2 MR2. (CVE-2014-3515, CVE-2014-4049, CVE-2014-3981, CVE-2014-0238, CVE-2014-0237, CVE-2014-4721)
2018-06-16 21:19:23
debian
debian
[DLA-0018-1] php5 security update
2014-07-23 19:10:58
[SECURITY] [DSA 2974-1] php5 security update
2014-07-08 21:34:45
[SECURITY] [DSA 2974-1] php5 security update
2014-07-08 21:34:45
osv
osv
php5 - security update
2014-07-23 00:00:00
php5 - security update
2014-07-08 00:00:00
mageia
mageia
Updated php packages fix multiple vulnerabilities
2014-07-09 02:30:04
Updated php packages fix multiple vulnerabilities
2014-07-09 02:29:20
securityvulns
securityvulns
[USN-2276-1] PHP vulnerabilities
2014-07-14 00:00:00
file / PHP multiple security vulnerabilities
2014-07-14 00:00:00
centos
centos
php security update
2014-08-06 14:38:20
php, php53 security update
2014-08-06 14:53:37
ubuntu
ubuntu
PHP vulnerabilities
2014-07-09 00:00:00
redhat
redhat
(RHSA-2014:1013) Moderate: php security update
2014-08-06 00:00:00
(RHSA-2014:1012) Moderate: php53 and php security update
2014-08-06 00:00:00
(RHSA-2014:1766) Important: php55-php security update
2014-10-30 00:00:00
oraclelinux
oraclelinux
php security update
2014-08-06 00:00:00
php53 and php security update
2014-08-06 00:00:00
suse
suse
Security update for php53 (important)
2016-06-21 13:08:17
rosalinux
rosalinux
Advisory ROSA-SA-2021-1950
2021-07-02 17:57:45

8.3 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

81.1%

JSON
Related for CVELIST:CVE-2014-4721
cve1veracode4f52nvd1ubuntucve1openvas20kaspersky1nessus25prion1ibm3debian3osv2mageia2securityvulns2centos2ubuntu1redhat4oraclelinux2suse1rosalinux1