Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-p9rr-rq6w-3bhg

Summary

Multiple vulnerabilities have been found in PHP, the worst of which
    could result in the execution of arbitrary shell commands.

Aliases

alias	CVE-2020-7064

Fixed_packages

url	pkg:apk/alpine/php7@7.2.31-r0?arch=ppc64le&distroversion=v3.9&reponame=community
purl	pkg:apk/alpine/php7@7.2.31-r0?arch=ppc64le&distroversion=v3.9&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.2.31-r0%3Farch=ppc64le&distroversion=v3.9&reponame=community

url	pkg:apk/alpine/php7@7.2.31-r0?arch=s390x&distroversion=v3.9&reponame=community
purl	pkg:apk/alpine/php7@7.2.31-r0?arch=s390x&distroversion=v3.9&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.2.31-r0%3Farch=s390x&distroversion=v3.9&reponame=community

url	pkg:apk/alpine/php7@7.2.31-r0?arch=x86&distroversion=v3.9&reponame=community
purl	pkg:apk/alpine/php7@7.2.31-r0?arch=x86&distroversion=v3.9&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.2.31-r0%3Farch=x86&distroversion=v3.9&reponame=community

url	pkg:apk/alpine/php7@7.2.31-r0?arch=x86_64&distroversion=v3.9&reponame=community
purl	pkg:apk/alpine/php7@7.2.31-r0?arch=x86_64&distroversion=v3.9&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.2.31-r0%3Farch=x86_64&distroversion=v3.9&reponame=community

url	pkg:apk/alpine/php7@7.2.31-r0?arch=aarch64&distroversion=v3.9&reponame=community
purl	pkg:apk/alpine/php7@7.2.31-r0?arch=aarch64&distroversion=v3.9&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.2.31-r0%3Farch=aarch64&distroversion=v3.9&reponame=community

url	pkg:apk/alpine/php7@7.2.31-r0?arch=armhf&distroversion=v3.9&reponame=community
purl	pkg:apk/alpine/php7@7.2.31-r0?arch=armhf&distroversion=v3.9&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.2.31-r0%3Farch=armhf&distroversion=v3.9&reponame=community

url	pkg:apk/alpine/php7@7.2.31-r0?arch=armv7&distroversion=v3.9&reponame=community
purl	pkg:apk/alpine/php7@7.2.31-r0?arch=armv7&distroversion=v3.9&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.2.31-r0%3Farch=armv7&distroversion=v3.9&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=aarch64&distroversion=v3.11&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=aarch64&distroversion=v3.11&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=aarch64&distroversion=v3.11&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=armhf&distroversion=v3.11&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=armhf&distroversion=v3.11&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=armhf&distroversion=v3.11&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=armv7&distroversion=v3.11&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=armv7&distroversion=v3.11&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=armv7&distroversion=v3.11&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=x86_64&distroversion=v3.12&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=x86_64&distroversion=v3.12&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=x86_64&distroversion=v3.12&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=s390x&distroversion=v3.11&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=s390x&distroversion=v3.11&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=s390x&distroversion=v3.11&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=armhf&distroversion=v3.15&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=armhf&distroversion=v3.15&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=armhf&distroversion=v3.15&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=s390x&distroversion=v3.12&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=s390x&distroversion=v3.12&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=s390x&distroversion=v3.12&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=ppc64le&distroversion=v3.11&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=ppc64le&distroversion=v3.11&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=ppc64le&distroversion=v3.11&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=x86_64&distroversion=v3.11&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=x86_64&distroversion=v3.11&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=x86_64&distroversion=v3.11&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=s390x&distroversion=v3.14&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=s390x&distroversion=v3.14&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=s390x&distroversion=v3.14&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=aarch64&distroversion=v3.13&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=aarch64&distroversion=v3.13&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=aarch64&distroversion=v3.13&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=armhf&distroversion=v3.13&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=armhf&distroversion=v3.13&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=armhf&distroversion=v3.13&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=armv7&distroversion=v3.13&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=armv7&distroversion=v3.13&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=armv7&distroversion=v3.13&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=mips64&distroversion=v3.13&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=mips64&distroversion=v3.13&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=mips64&distroversion=v3.13&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=ppc64le&distroversion=v3.13&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=ppc64le&distroversion=v3.13&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=ppc64le&distroversion=v3.13&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=s390x&distroversion=v3.13&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=s390x&distroversion=v3.13&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=s390x&distroversion=v3.13&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=x86&distroversion=v3.13&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=x86&distroversion=v3.13&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=x86&distroversion=v3.13&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=x86_64&distroversion=v3.13&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=x86_64&distroversion=v3.13&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=x86_64&distroversion=v3.13&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=aarch64&distroversion=v3.15&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=aarch64&distroversion=v3.15&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=aarch64&distroversion=v3.15&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=armv7&distroversion=v3.15&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=armv7&distroversion=v3.15&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=armv7&distroversion=v3.15&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=ppc64le&distroversion=v3.15&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=ppc64le&distroversion=v3.15&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=ppc64le&distroversion=v3.15&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=s390x&distroversion=v3.15&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=s390x&distroversion=v3.15&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=s390x&distroversion=v3.15&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=x86&distroversion=v3.15&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=x86&distroversion=v3.15&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=x86&distroversion=v3.15&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=x86_64&distroversion=v3.15&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=x86_64&distroversion=v3.15&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=x86_64&distroversion=v3.15&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=aarch64&distroversion=v3.12&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=aarch64&distroversion=v3.12&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=aarch64&distroversion=v3.12&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=armhf&distroversion=v3.12&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=armhf&distroversion=v3.12&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=armhf&distroversion=v3.12&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=armv7&distroversion=v3.12&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=armv7&distroversion=v3.12&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=armv7&distroversion=v3.12&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=mips64&distroversion=v3.12&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=mips64&distroversion=v3.12&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=mips64&distroversion=v3.12&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=ppc64le&distroversion=v3.12&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=ppc64le&distroversion=v3.12&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=ppc64le&distroversion=v3.12&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=x86&distroversion=v3.12&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=x86&distroversion=v3.12&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=x86&distroversion=v3.12&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=aarch64&distroversion=v3.14&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=aarch64&distroversion=v3.14&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=aarch64&distroversion=v3.14&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=armhf&distroversion=v3.14&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=armhf&distroversion=v3.14&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=armhf&distroversion=v3.14&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=armv7&distroversion=v3.14&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=armv7&distroversion=v3.14&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=armv7&distroversion=v3.14&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=ppc64le&distroversion=v3.14&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=ppc64le&distroversion=v3.14&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=ppc64le&distroversion=v3.14&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=x86&distroversion=v3.14&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=x86&distroversion=v3.14&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=x86&distroversion=v3.14&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=x86_64&distroversion=v3.14&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=x86_64&distroversion=v3.14&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=x86_64&distroversion=v3.14&reponame=community

url	pkg:apk/alpine/php7@7.3.16-r0?arch=x86&distroversion=v3.11&reponame=community
purl	pkg:apk/alpine/php7@7.3.16-r0?arch=x86&distroversion=v3.11&reponame=community
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:apk/alpine/php7@7.3.16-r0%3Farch=x86&distroversion=v3.11&reponame=community

url	pkg:deb/debian/php7.4@7.4.5-1?distro=bullseye
purl	pkg:deb/debian/php7.4@7.4.5-1?distro=bullseye
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/php7.4@7.4.5-1%3Fdistro=bullseye

url	pkg:deb/debian/php7.4@7.4.33-1%2Bdeb11u5?distro=bullseye
purl	pkg:deb/debian/php7.4@7.4.33-1%2Bdeb11u5?distro=bullseye
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/php7.4@7.4.33-1%252Bdeb11u5%3Fdistro=bullseye

url	pkg:ebuild/dev-lang/php@7.2.29
purl	pkg:ebuild/dev-lang/php@7.2.29
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@7.2.29

url	pkg:ebuild/dev-lang/php@7.3.16
purl	pkg:ebuild/dev-lang/php@7.3.16
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@7.3.16

url	pkg:ebuild/dev-lang/php@7.4.4
purl	pkg:ebuild/dev-lang/php@7.4.4
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/dev-lang/php@7.4.4

Affected_packages

url pkg:rpm/redhat/rh-php73-php@7.3.20-1?arch=el7

purl pkg:rpm/redhat/rh-php73-php@7.3.20-1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-2adj-dp22-xyeb

vulnerability	VCID-3xsn-r6dz-rfbv

vulnerability	VCID-73xb-21qk-gub3

vulnerability	VCID-7xqk-wt2z-eqhx

vulnerability	VCID-bshu-n7nn-53g8

vulnerability	VCID-h5jx-kf86-5yej

vulnerability	VCID-hak4-3ww9-aydn

vulnerability	VCID-hv57-6hth-6qfj

vulnerability	VCID-jurp-5mrx-13ce

vulnerability	VCID-khf6-r7w8-c7bm

vulnerability	VCID-ky48-2f2t-c7bb

vulnerability	VCID-p9rr-rq6w-3bhg

vulnerability	VCID-uq31-93sm-r3b2

vulnerability	VCID-zzhs-bgkx-qya7

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-php73-php@7.3.20-1%3Farch=el7

References

reference_url	http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00025.html
reference_id
reference_type
scores
url	http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00025.html

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-7064.json

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-7064.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-7064

reference_id

reference_type

scores

value	0.0233
scoring_system	epss
scoring_elements	0.84755
published_at	2026-04-01T12:55:00Z

value	0.0233
scoring_system	epss
scoring_elements	0.8485
published_at	2026-04-21T12:55:00Z

value	0.0233
scoring_system	epss
scoring_elements	0.84838
published_at	2026-04-11T12:55:00Z

value	0.0233
scoring_system	epss
scoring_elements	0.84835
published_at	2026-04-12T12:55:00Z

value	0.0233
scoring_system	epss
scoring_elements	0.8483
published_at	2026-04-13T12:55:00Z

value	0.0233
scoring_system	epss
scoring_elements	0.84852
published_at	2026-04-18T12:55:00Z

value	0.0233
scoring_system	epss
scoring_elements	0.8477
published_at	2026-04-02T12:55:00Z

value	0.0233
scoring_system	epss
scoring_elements	0.84789
published_at	2026-04-04T12:55:00Z

value	0.0233
scoring_system	epss
scoring_elements	0.84791
published_at	2026-04-07T12:55:00Z

value	0.0233
scoring_system	epss
scoring_elements	0.84814
published_at	2026-04-08T12:55:00Z

value	0.0233
scoring_system	epss
scoring_elements	0.8482
published_at	2026-04-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-7064

reference_url	https://bugs.php.net/bug.php?id=79282
reference_id
reference_type
scores
url	https://bugs.php.net/bug.php?id=79282

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11048
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11048

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7062
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7062

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7063
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7063

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7064
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7064

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7065
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7065

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7066
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7066

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7067
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7067

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://lists.debian.org/debian-lts-announce/2020/04/msg00021.html
reference_id
reference_type
scores
url	https://lists.debian.org/debian-lts-announce/2020/04/msg00021.html

reference_url	https://security.netapp.com/advisory/ntap-20200403-0001/
reference_id
reference_type
scores
url	https://security.netapp.com/advisory/ntap-20200403-0001/

reference_url	https://www.debian.org/security/2020/dsa-4717
reference_id
reference_type
scores
url	https://www.debian.org/security/2020/dsa-4717

reference_url	https://www.debian.org/security/2020/dsa-4719
reference_id
reference_type
scores
url	https://www.debian.org/security/2020/dsa-4719

reference_url	https://www.oracle.com/security-alerts/cpujan2021.html
reference_id
reference_type
scores
url	https://www.oracle.com/security-alerts/cpujan2021.html

reference_url	https://www.tenable.com/security/tns-2021-14
reference_id
reference_type
scores
url	https://www.tenable.com/security/tns-2021-14

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1820601
reference_id	1820601
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1820601

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php::::::::
reference_id	cpe:2.3:a:php:php::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:tenable.sc::::::::
reference_id	cpe:2.3:a:tenable:tenable.sc::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:tenable:tenable.sc::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::esm:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:12.04::::esm:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04::::esm:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04::::esm:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.10:::::::*
reference_id	cpe:2.3:o:canonical:ubuntu_linux:19.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:20.04::::lts:::
reference_id	cpe:2.3:o:canonical:ubuntu_linux:20.04::::lts:::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:20.04::::lts:::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:10.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:8.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_id	cpe:2.3:o:debian:debian_linux:9.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:::::::*
reference_id	cpe:2.3:o:opensuse:leap:15.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2020-7064

reference_id

CVE-2020-7064

reference_type

scores

value	5.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:N/A:P

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

url

https://nvd.nist.gov/vuln/detail/CVE-2020-7064

reference_url	https://security.gentoo.org/glsa/202003-57
reference_id	GLSA-202003-57
reference_type
scores
url	https://security.gentoo.org/glsa/202003-57

reference_url	https://access.redhat.com/errata/RHSA-2020:3662
reference_id	RHSA-2020:3662
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:3662

reference_url	https://access.redhat.com/errata/RHSA-2020:5275
reference_id	RHSA-2020:5275
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:5275

reference_url	https://usn.ubuntu.com/4330-1/
reference_id	USN-4330-1
reference_type
scores
url	https://usn.ubuntu.com/4330-1/

reference_url	https://usn.ubuntu.com/4330-2/
reference_id	USN-4330-2
reference_type
scores
url	https://usn.ubuntu.com/4330-2/

Weaknesses

cwe_id	200
name	Exposure of Sensitive Information to an Unauthorized Actor
description	The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

cwe_id	125
name	Out-of-bounds Read
description	The product reads data past the end, or before the beginning, of the intended buffer.

Exploits

Severity_range_score 5.3 - 6.5

Exploitability 0.5

Weighted_severity 5.9

Risk_score 3.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p9rr-rq6w-3bhg

Vulnerability Instance