Lucene search
Veracode Vulnerability DatabaseVERACODE:21346HistoryAug 20, 2019 - 12:10 a.m.
Information Disclosure
2019-08-2000:10:43
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
30
0.004 Low
EPSS
Percentile
72.6%
php is vulnerable to information disclosire. File rename across filesystems may allow unintended access to the file being renamed while the process is on-going.
| CPE | Name | Operator | Version |
|---|---|---|---|
| rh-php71-php | eq | 7.1.8__1.el7 | |
| rh-php72-php | eq | 7.2.10__3.el7 | |
| rh-php71-php | eq | 7.1.8__1.el7 | |
| rh-php72-php | eq | 7.2.10__3.el7 |
References
lists.opensuse.org/opensuse-security-announce/2019-04/msg00104.html
lists.opensuse.org/opensuse-security-announce/2019-06/msg00012.html
access.redhat.com/errata/RHSA-2019:2519
access.redhat.com/security/updates/classification/#moderate
bugs.php.net/bug.php?id=77630
lists.debian.org/debian-lts-announce/2019/03/msg00043.html
security.netapp.com/advisory/ntap-20190502-0007/
support.f5.com/csp/article/K53825211
usn.ubuntu.com/3922-1/
usn.ubuntu.com/3922-2/
usn.ubuntu.com/3922-3/
www.debian.org/security/2019/dsa-4403
Related
alpinelinux
alpinelinux
CVE-2019-9637
2019-03-09 00:29:00
redhatcve
redhatcve
CVE-2019-9637
2020-04-07 23:02:13
cvelist
cvelist
CVE-2019-9637
2019-03-08 23:00:00
cve
cve
CVE-2019-9637
2019-03-09 00:29:00
f5
f5
K53825211 : PHP vulnerability CVE-2019-9637
2019-03-26 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for php (EulerOS-SA-2019-1363)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for php (EulerOS-SA-2019-1333)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for php (EulerOS-SA-2019-1332)
2020-01-23 00:00:00
nessus
nessus
EulerOS Virtualization 2.5.3 : php (EulerOS-SA-2019-1363)
2019-05-10 00:00:00
EulerOS 2.0 SP3 : php (EulerOS-SA-2019-1333)
2019-05-06 00:00:00
Amazon Linux AMI : php71 / php72,php73 (ALAS-2019-1282)
2019-09-19 00:00:00
ubuntucve
ubuntucve
CVE-2019-9637
2019-03-08 00:00:00
osv
osv
CVE-2019-9637
2019-03-09 00:29:00
php7.0 - security update
2019-03-08 00:00:00
php5 - security update
2019-03-31 00:00:00
prion
prion
Design/Logic Flaw
2019-03-09 00:29:00
nvd
nvd
CVE-2019-9637
2019-03-09 00:29:00
debiancve
debiancve
CVE-2019-9637
2019-03-09 00:29:00
amazon
amazon
Medium: php71, php72, php73
2019-09-13 22:49:00
ibm
ibm
ubuntu
ubuntu
PHP vulnerabilities
2019-03-26 00:00:00
PHP vulnerabilities
2019-04-23 00:00:00
PHP vulnerabilities
2019-04-25 00:00:00
debian
debian
[SECURITY] [DLA 1741-1] php5 security update
2019-03-31 14:37:39
suse
suse
Security update for php5 (moderate)
2019-06-03 00:00:00
Security update for php7 (moderate)
2019-04-29 00:00:00
Security update for php7 (moderate)
2019-06-18 00:00:00
rocky
rocky
php:7.2 security, bug fix, and enhancement update
2020-04-28 08:57:54
oraclelinux
oraclelinux
php:7.2 security, bug fix, and enhancement update
2020-05-05 00:00:00
almalinux
almalinux
Moderate: php:7.2 security, bug fix, and enhancement update
2020-04-28 08:57:54
redhat
redhat
(RHSA-2020:1624) Moderate: php:7.2 security, bug fix, and enhancement update
2020-04-28 08:57:54
(RHSA-2019:3299) Critical: rh-php72-php security update
2019-11-01 12:22:19
rosalinux
rosalinux
Advisory ROSA-SA-2021-1950
2021-07-02 17:57:45