THREAT INTELLIGENCE:
There are currently no reports of these vulnerabilities being exploited in the wild.
SYSTEMS AFFECTED:
- PHP 5.1 prior to 5.6.40
- PHP 7.1 prior to 7.1.26
- PHP 7.2 prior to 7.2.14
- PHP 7.3 prior to 7.3.1
RISK:
Government:
- Large and medium government entities: HIGH
- Small government entities: HIGH
Businesses:
- Large and medium business entities: HIGH
- Small business entities: HIG
Home Users: LOW
TECHNICAL SUMMARY:
Multiple vulnerabilities have been discovered in PHP, the most severe of which could allow an attacker to execute arbitrary code. Details of these vulnerabilities are as below:
... ...