CVE-2017-12934

high-risk
Published 2017-08-18

ext/standard/var_unserializer.re in PHP 7.0.x before 7.0.21 and 7.1.x before 7.1.7 is prone to a heap use after free while unserializing untrusted data, related to the zval_get_type function in Zend/zend_types.h. Exploitation of this issue can have an unspecified impact on the integrity of PHP.

Do I need to act?

-
0.49% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10 High
NETWORK / LOW complexity

Affected Products (20)

Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php

Affected Vendors

Php

References (10)

Vendor Advisory http://php.net/ChangeLog-7.php
Third Party Advisory http://www.securityfocus.com/bid/100428
https://access.redhat.com/errata/RHSA-2018:1296
Issue Tracking https://bugs.php.net/bug.php?id=74101
https://www.debian.org/security/2018/dsa-4080
Vendor Advisory http://php.net/ChangeLog-7.php
Third Party Advisory http://www.securityfocus.com/bid/100428
https://access.redhat.com/errata/RHSA-2018:1296
Issue Tracking https://bugs.php.net/bug.php?id=74101
https://www.debian.org/security/2018/dsa-4080
50
/ 100
high-risk
Severity 26/34 · High
Exploitability 2/34 · Minimal
Exposure 22/34 · High