CVE-2016-3124
published 2017-02-07CVE-2016-3124: The sanitycheck module in SimpleSAMLphp before 1.14.1 allows remote attackers to learn the PHP version on the system via unspecified vectors.
medium5.3CVSS 3.0
AVNACLPRNUINSUCLINAN
The sanitycheck module in SimpleSAMLphp before 1.14.1 allows remote attackers to learn the PHP version on the system via unspecified vectors.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | simplesamlphp | < simplesamlphp 1.14.1-1 (bookworm) | simplesamlphp 1.14.1-1 (bookworm) |
| simplesamlphp | simplesamlphp | <= 1.14.0 | — |
| simplesamlphp | simplesamlphp | >= 0 < 1.14.1-1 | 1.14.1-1 |
| simplesamlphp | simplesamlphp | >= 0 < 1.14.1-1 | 1.14.1-1 |
| simplesamlphp | simplesamlphp | >= 0 < 1.14.1 | 1.14.1 |
CVSS provenance
nvdv3.05.3MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
osv5.3MEDIUM