CVE-2016-5773
high-risk
Published 2016-08-07
php_zip.c in the zip extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8 improperly interacts with the unserialize implementation and garbage collection, which allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free and application crash) via crafted serialized data containing a ZipArchive object.
Do I need to act?
!
16.1% chance of exploitation in next 30 days
EPSS score — higher than 84% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
+
Fix available
Upgrade to: f6aef68089221c5ea047d4a74224ee3deead99a6
9
CVSS 9.8/10
Critical
NETWORK
/ LOW complexity
Affected Products (20)
Affected Vendors
References (24)
Release Notes
http://www.openwall.com/lists/oss-security/2016/06/23/4
Release Notes
http://www.openwall.com/lists/oss-security/2016/06/23/4
and 4 more references
69
/ 100
high-risk
Severity
32/34 · Critical
Exploitability
13/34 · Low
Exposure
24/34 · High