cvelistv5 - cve-2024-8926

CVE-2024-8926 (GCVE-0-2024-8926)

Vulnerability from cvelistv5 – Published: 2024-10-08 03:48 – Updated: 2025-11-03 22:33

Summary

In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12, when using a certain non-standard configurations of Windows codepages, the fixes for CVE-2024-4577 https://github.com/advisories/GHSA-vxpp-6299-mxw3 may still be bypassed and the same command injection related to Windows "Best Fit" codepage behavior can be achieved. This may allow a malicious user to pass options to PHP binary being run, and thus reveal the source code of scripts, run arbitrary PHP code on the server, etc.

Severity ?

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-78 - Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Assigner

php

References

URL

Tags

https://github.com/php/php-src/security/advisorie…

Impacted products

	Vendor	Product	Version
	PHP Group	PHP	Affected: 8.1.* , < 8.1.30 (semver) Affected: 8.2.* , < 8.2.24 (semver) Affected: 8.3.* , < 8.3.12 (semver)

Credits

https://github.com/MortalAndTry

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "php",
            "vendor": "php",
            "versions": [
              {
                "lessThan": "8.1.30",
                "status": "affected",
                "version": "8.1.0",
                "versionType": "semver"
              },
              {
                "lessThan": "8.2.24",
                "status": "affected",
                "version": "8.2.0",
                "versionType": "semver"
              },
              {
                "lessThan": "8.3.12",
                "status": "affected",
                "version": "8.3.0",
                "versionType": "semver"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-8926",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-10-08T12:55:27.311454Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-08T13:52:37.171Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T22:33:06.473Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "https://security.netapp.com/advisory/ntap-20241101-0003/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "affected",
          "platforms": [
            "Windows"
          ],
          "product": "PHP",
          "vendor": "PHP Group",
          "versions": [
            {
              "lessThan": "8.1.30",
              "status": "affected",
              "version": "8.1.*",
              "versionType": "semver"
            },
            {
              "lessThan": "8.2.24",
              "status": "affected",
              "version": "8.2.*",
              "versionType": "semver"
            },
            {
              "lessThan": "8.3.12",
              "status": "affected",
              "version": "8.3.*",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "finder",
          "value": "https://github.com/MortalAndTry"
        }
      ],
      "datePublic": "2024-09-27T17:50:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12,\u0026nbsp;\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003ewhen using a certain non-standard configurations of Windows codepages, the fixes for\u0026nbsp;\u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://github.com/advisories/GHSA-vxpp-6299-mxw3\"\u003eCVE-2024-4577\u003c/a\u003e\u0026nbsp;may still be bypassed and the same command injection related to Windows \"Best Fit\" codepage behavior can be achieved. This\u0026nbsp;\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003emay allow a malicious user to pass options to PHP binary being run, and thus reveal the source code of scripts, run arbitrary PHP code on the server, etc.\u003c/span\u003e\u003c/span\u003e\u003cbr\u003e"
            }
          ],
          "value": "In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12,\u00a0when using a certain non-standard configurations of Windows codepages, the fixes for\u00a0 CVE-2024-4577 https://github.com/advisories/GHSA-vxpp-6299-mxw3 \u00a0may still be bypassed and the same command injection related to Windows \"Best Fit\" codepage behavior can be achieved. This\u00a0may allow a malicious user to pass options to PHP binary being run, and thus reveal the source code of scripts, run arbitrary PHP code on the server, etc."
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-88",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-88 OS Command Injection"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-78",
              "description": "CWE-78 Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-04-24T21:12:33.554Z",
        "orgId": "dd77f84a-d19a-4638-8c3d-a322d820ed2b",
        "shortName": "php"
      },
      "references": [
        {
          "url": "https://github.com/php/php-src/security/advisories/GHSA-p99j-rfp4-xqvq"
        }
      ],
      "source": {
        "advisory": "https://github.com/php/php-src/security/advisories/GHSA-p99j-rfp",
        "discovery": "EXTERNAL"
      },
      "title": "PHP CGI Parameter Injection Vulnerability (CVE-2024-4577 bypass)",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "dd77f84a-d19a-4638-8c3d-a322d820ed2b",
    "assignerShortName": "php",
    "cveId": "CVE-2024-8926",
    "datePublished": "2024-10-08T03:48:53.628Z",
    "dateReserved": "2024-09-17T04:06:56.550Z",
    "dateUpdated": "2025-11-03T22:33:06.473Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:php-fpm:php-fpm:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"8.1.0\", \"versionEndExcluding\": \"8.1.30\", \"matchCriteriaId\": \"3AB97B3F-78E0-412D-A29A-2086C84EC2A2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:php-fpm:php-fpm:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"8.2.0\", \"versionEndExcluding\": \"8.2.24\", \"matchCriteriaId\": \"30CA7A9A-B2B8-4A3E-981B-E94536DAFD89\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:php-fpm:php-fpm:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"8.3.0\", \"versionEndExcluding\": \"8.3.12\", \"matchCriteriaId\": \"8F7936E2-4290-48A4-A857-929E9CEDBDF5\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12,\\u00a0when using a certain non-standard configurations of Windows codepages, the fixes for\\u00a0 CVE-2024-4577 https://github.com/advisories/GHSA-vxpp-6299-mxw3 \\u00a0may still be bypassed and the same command injection related to Windows \\\"Best Fit\\\" codepage behavior can be achieved. This\\u00a0may allow a malicious user to pass options to PHP binary being run, and thus reveal the source code of scripts, run arbitrary PHP code on the server, etc.\"}, {\"lang\": \"es\", \"value\": \"En las versiones de PHP 8.1.* anteriores a 8.1.30, 8.2.* anteriores a 8.2.24, 8.3.* anteriores a 8.3.12, al utilizar ciertas configuraciones no est\\u00e1ndar de p\\u00e1ginas de c\\u00f3digos de Windows, las correcciones para CVE-2024-4577 https://github.com/advisories/GHSA-vxpp-6299-mxw3 a\\u00fan se pueden omitir y se puede lograr la misma inyecci\\u00f3n de comandos relacionada con el comportamiento de la p\\u00e1gina de c\\u00f3digos \\\"Best Fit\\\" de Windows. Esto puede permitir que un usuario malintencionado pase opciones al binario PHP que se est\\u00e1 ejecutando y, por lo tanto, revele el c\\u00f3digo fuente de los scripts, ejecute c\\u00f3digo PHP arbitrario en el servidor, etc.\"}]",
      "id": "CVE-2024-8926",
      "lastModified": "2024-10-16T18:35:59.500",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"security@php.net\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 8.1, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.2, \"impactScore\": 5.9}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 5.9}]}",
      "published": "2024-10-08T04:15:10.637",
      "references": "[{\"url\": \"https://github.com/advisories/GHSA-vxpp-6299-mxw3\", \"source\": \"security@php.net\", \"tags\": [\"Third Party Advisory\"]}]",
      "sourceIdentifier": "security@php.net",
      "vulnStatus": "Analyzed",
      "weaknesses": "[{\"source\": \"security@php.net\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-78\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-78\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-8926\",\"sourceIdentifier\":\"security@php.net\",\"published\":\"2024-10-08T04:15:10.637\",\"lastModified\":\"2025-11-03T23:17:32.883\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12,\u00a0when using a certain non-standard configurations of Windows codepages, the fixes for\u00a0 CVE-2024-4577 https://github.com/advisories/GHSA-vxpp-6299-mxw3 \u00a0may still be bypassed and the same command injection related to Windows \\\"Best Fit\\\" codepage behavior can be achieved. This\u00a0may allow a malicious user to pass options to PHP binary being run, and thus reveal the source code of scripts, run arbitrary PHP code on the server, etc.\"},{\"lang\":\"es\",\"value\":\"En las versiones de PHP 8.1.* anteriores a 8.1.30, 8.2.* anteriores a 8.2.24, 8.3.* anteriores a 8.3.12, al utilizar ciertas configuraciones no est\u00e1ndar de p\u00e1ginas de c\u00f3digos de Windows, las correcciones para CVE-2024-4577 https://github.com/advisories/GHSA-vxpp-6299-mxw3 a\u00fan se pueden omitir y se puede lograr la misma inyecci\u00f3n de comandos relacionada con el comportamiento de la p\u00e1gina de c\u00f3digos \\\"Best Fit\\\" de Windows. Esto puede permitir que un usuario malintencionado pase opciones al binario PHP que se est\u00e1 ejecutando y, por lo tanto, revele el c\u00f3digo fuente de los scripts, ejecute c\u00f3digo PHP arbitrario en el servidor, etc.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security@php.net\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":5.9},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"security@php.net\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-78\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-78\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"8.1.0\",\"versionEndExcluding\":\"8.1.30\",\"matchCriteriaId\":\"0AE1547D-26D1-4BD3-9EF8-B0E61BB7FFCB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"8.2.0\",\"versionEndExcluding\":\"8.2.24\",\"matchCriteriaId\":\"01D71D50-4234-4537-984F-DB2A675EDA24\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"8.3.0\",\"versionEndExcluding\":\"8.3.12\",\"matchCriteriaId\":\"3236DC72-ADB3-44C3-8A19-4EC37B9FFDD7\"}]}]}],\"references\":[{\"url\":\"https://github.com/php/php-src/security/advisories/GHSA-p99j-rfp4-xqvq\",\"source\":\"security@php.net\",\"tags\":[\"Exploit\",\"Vendor Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20241101-0003/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://security.netapp.com/advisory/ntap-20241101-0003/\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-11-03T22:33:06.473Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-8926\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-10-08T12:55:27.311454Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*\"], \"vendor\": \"php\", \"product\": \"php\", \"versions\": [{\"status\": \"affected\", \"version\": \"8.1.0\", \"lessThan\": \"8.1.30\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"8.2.0\", \"lessThan\": \"8.2.24\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"8.3.0\", \"lessThan\": \"8.3.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-10-08T12:56:09.856Z\"}}], \"cna\": {\"title\": \"PHP CGI Parameter Injection Vulnerability (CVE-2024-4577 bypass)\", \"source\": {\"advisory\": \"https://github.com/php/php-src/security/advisories/GHSA-p99j-rfp\", \"discovery\": \"EXTERNAL\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"https://github.com/MortalAndTry\"}], \"impacts\": [{\"capecId\": \"CAPEC-88\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-88 OS Command Injection\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 8.1, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"PHP Group\", \"product\": \"PHP\", \"versions\": [{\"status\": \"affected\", \"version\": \"8.1.*\", \"lessThan\": \"8.1.30\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"8.2.*\", \"lessThan\": \"8.2.24\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"8.3.*\", \"lessThan\": \"8.3.12\", \"versionType\": \"semver\"}], \"platforms\": [\"Windows\"], \"defaultStatus\": \"affected\"}], \"datePublic\": \"2024-09-27T17:50:00.000Z\", \"references\": [{\"url\": \"https://github.com/php/php-src/security/advisories/GHSA-p99j-rfp4-xqvq\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12,\\u00a0when using a certain non-standard configurations of Windows codepages, the fixes for\\u00a0 CVE-2024-4577 https://github.com/advisories/GHSA-vxpp-6299-mxw3 \\u00a0may still be bypassed and the same command injection related to Windows \\\"Best Fit\\\" codepage behavior can be achieved. This\\u00a0may allow a malicious user to pass options to PHP binary being run, and thus reveal the source code of scripts, run arbitrary PHP code on the server, etc.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12,\u0026nbsp;\u003cspan style=\\\"background-color: rgb(255, 255, 255);\\\"\u003ewhen using a certain non-standard configurations of Windows codepages, the fixes for\u0026nbsp;\u003ca target=\\\"_blank\\\" rel=\\\"nofollow\\\" href=\\\"https://github.com/advisories/GHSA-vxpp-6299-mxw3\\\"\u003eCVE-2024-4577\u003c/a\u003e\u0026nbsp;may still be bypassed and the same command injection related to Windows \\\"Best Fit\\\" codepage behavior can be achieved. This\u0026nbsp;\u003cspan style=\\\"background-color: rgb(255, 255, 255);\\\"\u003emay allow a malicious user to pass options to PHP binary being run, and thus reveal the source code of scripts, run arbitrary PHP code on the server, etc.\u003c/span\u003e\u003c/span\u003e\u003cbr\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-78\", \"description\": \"CWE-78 Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"dd77f84a-d19a-4638-8c3d-a322d820ed2b\", \"shortName\": \"php\", \"dateUpdated\": \"2025-04-24T21:12:33.554Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-8926\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-11-03T22:33:06.473Z\", \"dateReserved\": \"2024-09-17T04:06:56.550Z\", \"assignerOrgId\": \"dd77f84a-d19a-4638-8c3d-a322d820ed2b\", \"datePublished\": \"2024-10-08T03:48:53.628Z\", \"assignerShortName\": \"php\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

MSRC_CVE-2024-8926

Vulnerability from csaf_microsoft - Published: 2024-10-01 07:00 - Updated: 2024-11-09 00:00

Summary

PHP CGI Parameter Injection Vulnerability (CVE-2024-4577 bypass)

Notes

Additional Resources

To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle

Disclaimer

The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.

JSON

To clipboard

{
  "document": {
    "category": "csaf_vex",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Public",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "general",
        "text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
        "title": "Disclaimer"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "secure@microsoft.com",
      "name": "Microsoft Security Response Center",
      "namespace": "https://msrc.microsoft.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "CVE-2024-8926 PHP CGI Parameter Injection Vulnerability (CVE-2024-4577 bypass) - VEX",
        "url": "https://msrc.microsoft.com/csaf/vex/2024/msrc_cve-2024-8926.json"
      },
      {
        "category": "external",
        "summary": "Microsoft Support Lifecycle",
        "url": "https://support.microsoft.com/lifecycle"
      },
      {
        "category": "external",
        "summary": "Common Vulnerability Scoring System",
        "url": "https://www.first.org/cvss"
      }
    ],
    "title": "PHP CGI Parameter Injection Vulnerability (CVE-2024-4577 bypass)",
    "tracking": {
      "current_release_date": "2024-11-09T00:00:00.000Z",
      "generator": {
        "date": "2025-10-20T02:22:00.513Z",
        "engine": {
          "name": "MSRC Generator",
          "version": "1.0"
        }
      },
      "id": "msrc_CVE-2024-8926",
      "initial_release_date": "2024-10-01T07:00:00.000Z",
      "revision_history": [
        {
          "date": "2024-11-01T00:00:00.000Z",
          "legacy_version": "1",
          "number": "1",
          "summary": "Information published."
        },
        {
          "date": "2024-11-09T00:00:00.000Z",
          "legacy_version": "1.1",
          "number": "2",
          "summary": "Added php to Azure Linux 3.0\nAdded php to CBL-Mariner 2.0"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "3.0",
                "product": {
                  "name": "Azure Linux 3.0",
                  "product_id": "17084"
                }
              },
              {
                "category": "product_version",
                "name": "2.0",
                "product": {
                  "name": "CBL Mariner 2.0",
                  "product_id": "17086"
                }
              }
            ],
            "category": "product_name",
            "name": "Azure Linux"
          },
          {
            "category": "product_name",
            "name": "azl3 php 8.3.8-1",
            "product": {
              "name": "azl3 php 8.3.8-1",
              "product_id": "2"
            }
          },
          {
            "category": "product_name",
            "name": "cbl2 php 8.1.29-1",
            "product": {
              "name": "cbl2 php 8.1.29-1",
              "product_id": "1"
            }
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "azl3 php 8.3.8-1 as a component of Azure Linux 3.0",
          "product_id": "17084-2"
        },
        "product_reference": "2",
        "relates_to_product_reference": "17084"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cbl2 php 8.1.29-1 as a component of CBL Mariner 2.0",
          "product_id": "17086-1"
        },
        "product_reference": "1",
        "relates_to_product_reference": "17086"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-8926",
      "cwe": {
        "id": "CWE-78",
        "name": "Improper Neutralization of Special Elements used in an OS Command (\u0026#39;OS Command Injection\u0026#39;)"
      },
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "17084-2",
            "17086-1"
          ]
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "php",
          "title": "Assigning CNA"
        }
      ],
      "product_status": {
        "known_not_affected": [
          "17084-2",
          "17086-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-8926 PHP CGI Parameter Injection Vulnerability (CVE-2024-4577 bypass) - VEX",
          "url": "https://msrc.microsoft.com/csaf/vex/2024/msrc_cve-2024-8926.json"
        }
      ],
      "title": "PHP CGI Parameter Injection Vulnerability (CVE-2024-4577 bypass)"
    }
  ]
}

FKIE_CVE-2024-8926

Vulnerability from fkie_nvd - Published: 2024-10-08 04:15 - Updated: 2025-11-03 23:17

Severity ?

8.1 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

References

	URL	Tags
	security@php.net	https://github.com/php/php-src/security/advisories/GHSA-p99j-rfp4-xqvq	Exploit, Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://security.netapp.com/advisory/ntap-20241101-0003/

Impacted products

Vendor	Product	Version
php	php	*
php	php	*
php	php	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "0AE1547D-26D1-4BD3-9EF8-B0E61BB7FFCB",
              "versionEndExcluding": "8.1.30",
              "versionStartIncluding": "8.1.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "01D71D50-4234-4537-984F-DB2A675EDA24",
              "versionEndExcluding": "8.2.24",
              "versionStartIncluding": "8.2.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:php:php:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "3236DC72-ADB3-44C3-8A19-4EC37B9FFDD7",
              "versionEndExcluding": "8.3.12",
              "versionStartIncluding": "8.3.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "In PHP versions 8.1.* before 8.1.30, 8.2.* before 8.2.24, 8.3.* before 8.3.12,\u00a0when using a certain non-standard configurations of Windows codepages, the fixes for\u00a0 CVE-2024-4577 https://github.com/advisories/GHSA-vxpp-6299-mxw3 \u00a0may still be bypassed and the same command injection related to Windows \"Best Fit\" codepage behavior can be achieved. This\u00a0may allow a malicious user to pass options to PHP binary being run, and thus reveal the source code of scripts, run arbitrary PHP code on the server, etc."
    },
    {
      "lang": "es",
      "value": "En las versiones de PHP 8.1.* anteriores a 8.1.30, 8.2.* anteriores a 8.2.24, 8.3.* anteriores a 8.3.12, al utilizar ciertas configuraciones no est\u00e1ndar de p\u00e1ginas de c\u00f3digos de Windows, las correcciones para CVE-2024-4577 https://github.com/advisories/GHSA-vxpp-6299-mxw3 a\u00fan se pueden omitir y se puede lograr la misma inyecci\u00f3n de comandos relacionada con el comportamiento de la p\u00e1gina de c\u00f3digos \"Best Fit\" de Windows. Esto puede permitir que un usuario malintencionado pase opciones al binario PHP que se est\u00e1 ejecutando y, por lo tanto, revele el c\u00f3digo fuente de los scripts, ejecute c\u00f3digo PHP arbitrario en el servidor, etc."
    }
  ],
  "id": "CVE-2024-8926",
  "lastModified": "2025-11-03T23:17:32.883",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.1,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 5.9,
        "source": "security@php.net",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-10-08T04:15:10.637",
  "references": [
    {
      "source": "security@php.net",
      "tags": [
        "Exploit",
        "Vendor Advisory"
      ],
      "url": "https://github.com/php/php-src/security/advisories/GHSA-p99j-rfp4-xqvq"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://security.netapp.com/advisory/ntap-20241101-0003/"
    }
  ],
  "sourceIdentifier": "security@php.net",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-78"
        }
      ],
      "source": "security@php.net",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-78"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

WID-SEC-W-2024-2230

Vulnerability from csaf_certbund - Published: 2024-09-26 22:00 - Updated: 2025-05-25 22:00

Summary

PHP: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

PHP ist eine Programmiersprache, die zur Implementierung von Web-Applikationen genutzt wird.

Angriff

Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in PHP ausnutzen, um beliebigen Programmcode auszuführen, Informationen preiszugeben und andere nicht spezifizierte Angriffe durchzuführen.

Betroffene Betriebssysteme

- Linux - Windows

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "kritisch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "PHP ist eine Programmiersprache, die zur Implementierung von Web-Applikationen genutzt wird.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in PHP ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Informationen preiszugeben und andere nicht spezifizierte Angriffe durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Windows",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-2230 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-2230.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-2230 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-2230"
      },
      {
        "category": "external",
        "summary": "PHP 8.2.24 Release vom 2024-09-26",
        "url": "https://php.net/releases/8_2_24.php"
      },
      {
        "category": "external",
        "summary": "PHP 8.3.12 Release vom 2024-09-26",
        "url": "https://php.net/releases/8_3_12.php"
      },
      {
        "category": "external",
        "summary": "Tenable  Advisory vom 2024-09-26",
        "url": "https://www.tenable.com/plugins/nessus/207822"
      },
      {
        "category": "external",
        "summary": "Tenable  Advisory vom 2024-09-26",
        "url": "https://www.tenable.com/plugins/nessus/207821"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7049-1 vom 2024-10-01",
        "url": "https://ubuntu.com/security/notices/USN-7049-1"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DSA-5780 vom 2024-10-02",
        "url": "https://lists.debian.org/debian-security-announce/2024/msg00193.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3920 vom 2024-10-15",
        "url": "https://lists.debian.org/debian-lts-announce/2024/10/msg00011.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3664-1 vom 2024-10-16",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/OMHGA4CY55IT2GAR563WLNMWVPZFZBLC/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3733-1 vom 2024-10-18",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/2SCVT3RPT53THJFRUZYDVBL7RJCJCVUF/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3732-1 vom 2024-10-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2024-October/019659.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2024:3729-1 vom 2024-10-18",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/J2XACYTTN3573N5WMITQPDYB6BRAIL3H/"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7049-2 vom 2024-11-14",
        "url": "https://ubuntu.com/security/notices/USN-7049-2"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:10949 vom 2024-12-11",
        "url": "https://access.redhat.com/errata/RHSA-2024:10949"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:10950 vom 2024-12-11",
        "url": "https://access.redhat.com/errata/RHSA-2024:10950"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:10952 vom 2024-12-11",
        "url": "https://access.redhat.com/errata/RHSA-2024:10952"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:10951 vom 2024-12-11",
        "url": "https://access.redhat.com/errata/RHSA-2024:10951"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-10951 vom 2024-12-12",
        "url": "https://linux.oracle.com/errata/ELSA-2024-10951.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-10949 vom 2024-12-12",
        "url": "https://linux.oracle.com/errata/ELSA-2024-10949.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-10950 vom 2024-12-13",
        "url": "https://linux.oracle.com/errata/ELSA-2024-10950.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2024-10952 vom 2024-12-13",
        "url": "https://linux.oracle.com/errata/ELSA-2024-10952.html"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2024:10949 vom 2024-12-19",
        "url": "https://errata.build.resf.org/RLSA-2024:10949"
      },
      {
        "category": "external",
        "summary": "Rocky Linux Security Advisory RLSA-2024:10950 vom 2024-12-19",
        "url": "https://errata.build.resf.org/RLSA-2024:10950"
      },
      {
        "category": "external",
        "summary": "Gentoo Linux Security Advisory GLSA-202501-11 vom 2025-01-23",
        "url": "https://security.gentoo.org/glsa/202501-11"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALASPHP8.2-2025-006 vom 2025-02-25",
        "url": "https://alas.aws.amazon.com/AL2/ALASPHP8.2-2025-006.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALASPHP8.1-2025-006 vom 2025-02-25",
        "url": "https://alas.aws.amazon.com/AL2/ALASPHP8.1-2025-006.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-7049-3 vom 2025-02-27",
        "url": "https://ubuntu.com/security/notices/USN-7049-3"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2025-2832 vom 2025-04-16",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2025-2832.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2025:7315 vom 2025-05-13",
        "url": "https://access.redhat.com/errata/RHSA-2025:7315"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2025-7431 vom 2025-05-23",
        "url": "https://linux.oracle.com/errata/ELSA-2025-7431.html"
      }
    ],
    "source_lang": "en-US",
    "title": "PHP: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-05-25T22:00:00.000+00:00",
      "generator": {
        "date": "2025-05-26T07:03:37.217+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.12"
        }
      },
      "id": "WID-SEC-W-2024-2230",
      "initial_release_date": "2024-09-26T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-09-26T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2024-10-01T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-10-03T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2024-10-10T22:00:00.000+00:00",
          "number": "4",
          "summary": "Kategorisierung Linux erg\u00e4nzt"
        },
        {
          "date": "2024-10-14T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Debian aufgenommen"
        },
        {
          "date": "2024-10-16T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-10-20T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2024-11-14T23:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2024-12-10T23:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-12-11T23:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2024-12-12T23:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        },
        {
          "date": "2024-12-18T23:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
        },
        {
          "date": "2025-01-22T23:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Gentoo aufgenommen"
        },
        {
          "date": "2025-02-25T23:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2025-02-26T23:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2025-04-16T22:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2025-05-12T22:00:00.000+00:00",
          "number": "17",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2025-05-25T22:00:00.000+00:00",
          "number": "18",
          "summary": "Neue Updates von Oracle Linux aufgenommen"
        }
      ],
      "status": "final",
      "version": "18"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Gentoo Linux",
            "product": {
              "name": "Gentoo Linux",
              "product_id": "T012167",
              "product_identification_helper": {
                "cpe": "cpe:/o:gentoo:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Gentoo"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c8.2.24",
                "product": {
                  "name": "Open Source PHP \u003c8.2.24",
                  "product_id": "T037860"
                }
              },
              {
                "category": "product_version",
                "name": "8.2.24",
                "product": {
                  "name": "Open Source PHP 8.2.24",
                  "product_id": "T037860-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:php:php:8.2.24"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c8.3.12",
                "product": {
                  "name": "Open Source PHP \u003c8.3.12",
                  "product_id": "T037861"
                }
              },
              {
                "category": "product_version",
                "name": "8.3.12",
                "product": {
                  "name": "Open Source PHP 8.3.12",
                  "product_id": "T037861-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:php:php:8.3.12"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "PHP"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "RESF Rocky Linux",
            "product": {
              "name": "RESF Rocky Linux",
              "product_id": "T032255",
              "product_identification_helper": {
                "cpe": "cpe:/o:resf:rocky_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "RESF"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-8925",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "398363",
          "T012167",
          "T004914",
          "T032255",
          "T037860",
          "T037861"
        ]
      },
      "release_date": "2024-09-26T22:00:00.000+00:00",
      "title": "CVE-2024-8925"
    },
    {
      "cve": "CVE-2024-8926",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "398363",
          "T012167",
          "T004914",
          "T032255",
          "T037860",
          "T037861"
        ]
      },
      "release_date": "2024-09-26T22:00:00.000+00:00",
      "title": "CVE-2024-8926"
    },
    {
      "cve": "CVE-2024-8927",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "398363",
          "T012167",
          "T004914",
          "T032255",
          "T037860",
          "T037861"
        ]
      },
      "release_date": "2024-09-26T22:00:00.000+00:00",
      "title": "CVE-2024-8927"
    },
    {
      "cve": "CVE-2024-9026",
      "product_status": {
        "known_affected": [
          "2951",
          "T002207",
          "67646",
          "T000126",
          "398363",
          "T012167",
          "T004914",
          "T032255",
          "T037860",
          "T037861"
        ]
      },
      "release_date": "2024-09-26T22:00:00.000+00:00",
      "title": "CVE-2024-9026"
    }
  ]
}

CERTFR-2024-AVI-0818

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans PHP. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une atteinte à la confidentialité des données et une atteinte à l'intégrité des données.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
PHP	PHP	PHP versions 8.2.x antérieures à 8.2.24
PHP	PHP	PHP versions antérieures à 8.1.30
PHP	PHP	PHP versions 8.3.x antérieures à 8.3.12

References

Title

Publication Time

Tags

Bulletin de sécurité PHP 8.2.24	2024-09-26	vendor-advisory
Bulletin de sécurité PHP 8.3.12	2024-09-26	vendor-advisory
Bulletin de sécurité PHP 8.1.30	2024-09-26	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "PHP versions 8.2.x ant\u00e9rieures \u00e0 8.2.24",
      "product": {
        "name": "PHP",
        "vendor": {
          "name": "PHP",
          "scada": false
        }
      }
    },
    {
      "description": "PHP versions ant\u00e9rieures \u00e0 8.1.30",
      "product": {
        "name": "PHP",
        "vendor": {
          "name": "PHP",
          "scada": false
        }
      }
    },
    {
      "description": "PHP versions 8.3.x ant\u00e9rieures \u00e0 8.3.12",
      "product": {
        "name": "PHP",
        "vendor": {
          "name": "PHP",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2024-8927",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-8927"
    },
    {
      "name": "CVE-2024-8925",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-8925"
    },
    {
      "name": "CVE-2024-4577",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-4577"
    },
    {
      "name": "CVE-2024-8926",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-8926"
    },
    {
      "name": "CVE-2024-9026",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-9026"
    }
  ],
  "links": [],
  "reference": "CERTFR-2024-AVI-0818",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-09-27T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans PHP. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans PHP",
  "vendor_advisories": [
    {
      "published_at": "2024-09-26",
      "title": "Bulletin de s\u00e9curit\u00e9 PHP 8.2.24",
      "url": "https://www.php.net/ChangeLog-8.php#8.2.24"
    },
    {
      "published_at": "2024-09-26",
      "title": "Bulletin de s\u00e9curit\u00e9 PHP 8.3.12",
      "url": "https://www.php.net/ChangeLog-8.php#8.3.12"
    },
    {
      "published_at": "2024-09-26",
      "title": "Bulletin de s\u00e9curit\u00e9 PHP 8.1.30",
      "url": "https://www.php.net/ChangeLog-8.php#8.1.30"
    }
  ]
}

CERTFR-2024-AVI-0818

Vulnerability from certfr_avis - Published: - Updated:

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
PHP	PHP	PHP versions 8.2.x antérieures à 8.2.24
PHP	PHP	PHP versions antérieures à 8.1.30
PHP	PHP	PHP versions 8.3.x antérieures à 8.3.12

References

Title

Publication Time

Tags

Bulletin de sécurité PHP 8.2.24	2024-09-26	vendor-advisory
Bulletin de sécurité PHP 8.3.12	2024-09-26	vendor-advisory
Bulletin de sécurité PHP 8.1.30	2024-09-26	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "PHP versions 8.2.x ant\u00e9rieures \u00e0 8.2.24",
      "product": {
        "name": "PHP",
        "vendor": {
          "name": "PHP",
          "scada": false
        }
      }
    },
    {
      "description": "PHP versions ant\u00e9rieures \u00e0 8.1.30",
      "product": {
        "name": "PHP",
        "vendor": {
          "name": "PHP",
          "scada": false
        }
      }
    },
    {
      "description": "PHP versions 8.3.x ant\u00e9rieures \u00e0 8.3.12",
      "product": {
        "name": "PHP",
        "vendor": {
          "name": "PHP",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2024-8927",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-8927"
    },
    {
      "name": "CVE-2024-8925",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-8925"
    },
    {
      "name": "CVE-2024-4577",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-4577"
    },
    {
      "name": "CVE-2024-8926",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-8926"
    },
    {
      "name": "CVE-2024-9026",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-9026"
    }
  ],
  "links": [],
  "reference": "CERTFR-2024-AVI-0818",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-09-27T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans PHP. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans PHP",
  "vendor_advisories": [
    {
      "published_at": "2024-09-26",
      "title": "Bulletin de s\u00e9curit\u00e9 PHP 8.2.24",
      "url": "https://www.php.net/ChangeLog-8.php#8.2.24"
    },
    {
      "published_at": "2024-09-26",
      "title": "Bulletin de s\u00e9curit\u00e9 PHP 8.3.12",
      "url": "https://www.php.net/ChangeLog-8.php#8.3.12"
    },
    {
      "published_at": "2024-09-26",
      "title": "Bulletin de s\u00e9curit\u00e9 PHP 8.1.30",
      "url": "https://www.php.net/ChangeLog-8.php#8.1.30"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-8926 (GCVE-0-2024-8926)

MSRC_CVE-2024-8926

FKIE_CVE-2024-8926

WID-SEC-W-2024-2230

CERTFR-2024-AVI-0818

Solutions

CERTFR-2024-AVI-0818

Solutions

Tags

Sightings

Nomenclature