LASER_oneXM

Level 31
Verified
THREAT INTELLIGENCE:

There are currently no reports of these vulnerabilities being exploited in the wild.
SYSTEMS AFFECTED:

  • PHP 5.1 prior to 5.6.40
  • PHP 7.1 prior to 7.1.26
  • PHP 7.2 prior to 7.2.14
  • PHP 7.3 prior to 7.3.1
RISK:

Government:
  • Large and medium government entities: HIGH
  • Small government entities: HIGH
Businesses:
  • Large and medium business entities: HIGH
  • Small business entities: HIG
Home Users: LOW

TECHNICAL SUMMARY:
Multiple vulnerabilities have been discovered in PHP, the most severe of which could allow an attacker to execute arbitrary code. Details of these vulnerabilities are as below:
... ...