CVE-2020-7068

low
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

In PHP versions 7.2.x below 7.2.33, 7.3.x below 7.3.21 and 7.4.x below 7.4.9, while processing PHAR files using phar extension, phar_parse_zipfile could be tricked into accessing freed memory, which could lead to a crash or information disclosure.

References

https://bugs.php.net/bug.php?id=79797

https://security.gentoo.org/glsa/202009-10

https://security.netapp.com/advisory/ntap-20200918-0005/

https://www.debian.org/security/2021/dsa-4856

Details

Source: MITRE

Published: 2020-09-09

Updated: 2021-07-22

Type: CWE-416

Risk Information

CVSS v2

Base Score: 3.3

Vector: AV:L/AC:M/Au:N/C:P/I:N/A:P

Impact Score: 4.9

Exploitability Score: 3.4

Severity: LOW

CVSS v3

Base Score: 3.6

Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:L

Impact Score: 2.5

Exploitability Score: 1

Severity: LOW

Tenable Plugins

View all (28 total)

IDNameProductFamilySeverity
152986Tenable SecurityCenter < 5.19.0 Multiple Vulnerabilities (TNS-2021-14)NessusMisc.
high
152348RHEL 7 : rh-php73-php (RHSA-2021:2992)NessusRed Hat Local Security Checks
medium
151985Tenable.sc < 5.19.0 Multiple Vulnerabilities (TNS-2021-14) (deprecated)NessusMisc.
high
151583Ubuntu 16.04 LTS : PHP vulnerabilities (USN-5006-2)NessusUbuntu Local Security Checks
critical
151444Ubuntu 18.04 LTS / 20.04 LTS / 20.10 / 21.04 : PHP vulnerabilities (USN-5006-1)NessusUbuntu Local Security Checks
critical
148126Amazon Linux AMI : php72, php73 (ALAS-2020-1425)NessusAmazon Linux Local Security Checks
low
147033EulerOS Virtualization for ARM 64 3.0.6.0 : php (EulerOS-SA-2021-1566)NessusHuawei Local Security Checks
medium
146613Debian DSA-4856-1 : php7.3 - security updateNessusDebian Local Security Checks
medium
142167EulerOS 2.0 SP8 : php (EulerOS-SA-2020-2316)NessusHuawei Local Security Checks
medium
112609PHP 7.2.x < 7.2.33 Use-After-Free VulnerabilityWeb Application ScanningComponent Vulnerability
low
112608PHP 7.3.x < 7.3.21 Use-After-Free VulnerabilityWeb Application ScanningComponent Vulnerability
low
112607PHP 7.4.x < 7.4.9 Use-After-Free VulnerabilityWeb Application ScanningComponent Vulnerability
low
140565GLSA-202009-10 : PHP: Denial of serviceNessusGentoo Local Security Checks
low
140371openSUSE Security Update : php7 (openSUSE-2020-1356)NessusSuSE Local Security Checks
low
140370openSUSE Security Update : php7 (openSUSE-2020-1354)NessusSuSE Local Security Checks
low
140261SUSE SLES12 Security Update : php5 (SUSE-SU-2020:2477-1)NessusSuSE Local Security Checks
low
140256SUSE SLED15 / SLES15 Security Update : php7 (SUSE-SU-2020:2456-1)NessusSuSE Local Security Checks
low
140255SUSE SLED15 / SLES15 Security Update : php7 (SUSE-SU-2020:2455-1)NessusSuSE Local Security Checks
low
140246SUSE SLES12 Security Update : php72 (SUSE-SU-2020:2405-1)NessusSuSE Local Security Checks
low
140245SUSE SLES12 Security Update : php74 (SUSE-SU-2020:2404-1)NessusSuSE Local Security Checks
low
140244SUSE SLES12 Security Update : php7 (SUSE-SU-2020:2403-1)NessusSuSE Local Security Checks
low
139935FreeBSD : php72 -- use of freed hash key (ee261034-b95e-4479-b947-08b0877e029f)NessusFreeBSD Local Security Checks
low
139876Debian DLA-2345-1 : php7.0 security updateNessusDebian Local Security Checks
low
139681Fedora 32 : php (2020-96124cc236)NessusFedora Local Security Checks
low
139680Fedora 31 : php (2020-8e36afc743)NessusFedora Local Security Checks
low
139571PHP 7.2.x < 7.2.33 Use-After-Free VulnerabilityNessusCGI abuses
low
139570PHP 7.4.x < 7.4.9 Use-After-Free VulnerabilityNessusCGI abuses
low
139569PHP 7.3.x < 7.3.21 Use-After-Free VulnerabilityNessusCGI abuses
low