CVE-2006-3018 — Group PHP vulnerability

5 documents5 sources

Severity

7.5HIGHNVD

EPSS

1.2%

top 21.31%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

PHP Group PHP

Timeline

PublishedJun 14

Latest updateMay 1

Description

Unspecified vulnerability in the session extension functionality in PHP before 5.1.3 has unknown impact and attack vectors related to heap corruption.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDphp_group/php5.1.2

🔴Vulnerability Details

GHSA

GHSA-p2mf-5wpv-qq3x: Unspecified vulnerability in the session extension functionality in PHP before 5↗2022-05-01

▶

CVEList

CVE-2006-3018: Unspecified vulnerability in the session extension functionality in PHP before 5↗2006-06-14

▶

📋Vendor Advisories

Ubuntu

PHP vulnerabilities↗2006-07-19

▶

Red Hat

CVE-2006-3018: Unspecified vulnerability in the session extension functionality in PHP before 5↗

▶