CVE-2016-3132

high-risk
Published 2016-08-07

Double free vulnerability in the SplDoublyLinkedList::offsetSet function in ext/spl/spl_dllist.c in PHP 7.x before 7.0.6 allows remote attackers to execute arbitrary code via a crafted index.

Do I need to act?

!
11.3% chance of exploitation in next 30 days
EPSS score — higher than 89% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
+
Fix available
Upgrade to: 28a6ed9f9a36b9c517e4a8a429baf4dd382fc5d5
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (6)

Php
Php
Php
Php
Php
Php

Affected Vendors

Php

References (10)

Patch http://github.com/php/php-src/commit/28a6ed9f9a36b9c517e4a8a429baf4dd382fc5d5?w=...
http://www.securityfocus.com/bid/92356
Exploit https://bugs.php.net/bug.php?id=71735
Patch https://php.net/ChangeLog-7.php
Third Party Advisory https://security-tracker.debian.org/tracker/CVE-2016-3132
Patch http://github.com/php/php-src/commit/28a6ed9f9a36b9c517e4a8a429baf4dd382fc5d5?w=...
http://www.securityfocus.com/bid/92356
Exploit https://bugs.php.net/bug.php?id=71735
Patch https://php.net/ChangeLog-7.php
Third Party Advisory https://security-tracker.debian.org/tracker/CVE-2016-3132
56
/ 100
high-risk
Severity 32/34 · Critical
Exploitability 11/34 · Low
Exposure 13/34 · Low