CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
Low
EPSS
Percentile
49.2%
A vulnerability in the PHP programming language is related to the random number generator’s use of a narrower
range of values. Exploitation of the vulnerability could allow an attacker acting remotely to gain
access sensitive data
A vulnerability in the PHP interpreter phar_dir_read() function is caused by a buffer overflow on the stack.
Exploitation of the vulnerability could allow a remote attacker to execute arbitrary code
Vulnerability in PHP programming language interpreter is related to incorrect restriction of XML links to an external object.
external object. Exploitation of the vulnerability could allow a remote attacker to cause a denial of service or obtain unauthorized code.
denial of service or gain unauthorized access to sensitive data