Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-8kym-4nwh-aqfm

Summary php: missing null byte checks for paths in various PHP extensions

Aliases

alias	CVE-2015-3412

Fixed_packages

Affected_packages

url pkg:rpm/redhat/php@5.3.3-46?arch=el6_6

purl pkg:rpm/redhat/php@5.3.3-46?arch=el6_6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3r4w-2t4j-9yhj

vulnerability	VCID-81ef-kadu-kyfh

vulnerability	VCID-8fu6-sec8-xugs

vulnerability	VCID-8kym-4nwh-aqfm

vulnerability	VCID-9wvm-w1qk-xycw

vulnerability	VCID-9zsz-se7t-rbg5

vulnerability	VCID-c35h-fm6m-j7gk

vulnerability	VCID-fnxb-3r49-qub2

vulnerability	VCID-fprj-bhat-bbby

vulnerability	VCID-hdhg-7jda-afdf

vulnerability	VCID-hmwd-fxux-ykbf

vulnerability	VCID-hsef-gdm7-zuah

vulnerability	VCID-j1t5-sfn3-j3c1

vulnerability	VCID-j29w-xkdz-xybp

vulnerability	VCID-nemj-tdgu-mkbw

vulnerability	VCID-nx82-guaw-r7fq

vulnerability	VCID-pvgs-r3n3-63hj

vulnerability	VCID-q9qf-ed58-3udx

vulnerability	VCID-rdy9-wgqs-8qf4

vulnerability	VCID-rnhz-y1dn-pqfg

vulnerability	VCID-szdn-6512-gqff

vulnerability	VCID-twxd-49gc-cybg

vulnerability	VCID-tyzc-rq14-3kge

vulnerability	VCID-vfhb-pq1c-qkfj

vulnerability	VCID-yh5e-xrz5-e7h6

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/php@5.3.3-46%3Farch=el6_6

url pkg:rpm/redhat/php@5.4.16-36?arch=ael7b_1

purl pkg:rpm/redhat/php@5.4.16-36?arch=ael7b_1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11jy-h7b2-87ef

vulnerability	VCID-3r4w-2t4j-9yhj

vulnerability	VCID-81ef-kadu-kyfh

vulnerability	VCID-8fu6-sec8-xugs

vulnerability	VCID-8kym-4nwh-aqfm

vulnerability	VCID-9wvm-w1qk-xycw

vulnerability	VCID-9zsz-se7t-rbg5

vulnerability	VCID-b3sg-kb4n-b3dw

vulnerability	VCID-c35h-fm6m-j7gk

vulnerability	VCID-fhc5-qj7s-vbeb

vulnerability	VCID-fnxb-3r49-qub2

vulnerability	VCID-fprj-bhat-bbby

vulnerability	VCID-hdhg-7jda-afdf

vulnerability	VCID-hmwd-fxux-ykbf

vulnerability	VCID-hsef-gdm7-zuah

vulnerability	VCID-j1t5-sfn3-j3c1

vulnerability	VCID-n1mh-p3k8-73gm

vulnerability	VCID-nemj-tdgu-mkbw

vulnerability	VCID-nfd8-hxvz-x3au

vulnerability	VCID-nx82-guaw-r7fq

vulnerability	VCID-pvgs-r3n3-63hj

vulnerability	VCID-q9qf-ed58-3udx

vulnerability	VCID-rdy9-wgqs-8qf4

vulnerability	VCID-rnhz-y1dn-pqfg

vulnerability	VCID-szdn-6512-gqff

vulnerability	VCID-tt5f-z7g1-1yah

vulnerability	VCID-twxd-49gc-cybg

vulnerability	VCID-tyzc-rq14-3kge

vulnerability	VCID-vfhb-pq1c-qkfj

vulnerability	VCID-yeyu-tq17-7bgh

vulnerability	VCID-yh5e-xrz5-e7h6

vulnerability	VCID-znxe-1d6b-wucj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/php@5.4.16-36%3Farch=ael7b_1

url pkg:rpm/redhat/php54@2.0-1?arch=el6

purl pkg:rpm/redhat/php54@2.0-1?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3jv2-9tx4-9fbm

vulnerability	VCID-3r4w-2t4j-9yhj

vulnerability	VCID-8fu6-sec8-xugs

vulnerability	VCID-8kym-4nwh-aqfm

vulnerability	VCID-9wvm-w1qk-xycw

vulnerability	VCID-b3sg-kb4n-b3dw

vulnerability	VCID-fhc5-qj7s-vbeb

vulnerability	VCID-fnxb-3r49-qub2

vulnerability	VCID-fprj-bhat-bbby

vulnerability	VCID-hdhg-7jda-afdf

vulnerability	VCID-hff1-gf6b-8bge

vulnerability	VCID-hmwd-fxux-ykbf

vulnerability	VCID-j1t5-sfn3-j3c1

vulnerability	VCID-n1mh-p3k8-73gm

vulnerability	VCID-nfd8-hxvz-x3au

vulnerability	VCID-nx82-guaw-r7fq

vulnerability	VCID-pvgs-r3n3-63hj

vulnerability	VCID-q9qf-ed58-3udx

vulnerability	VCID-qeb2-zmqa-x7en

vulnerability	VCID-rdy9-wgqs-8qf4

vulnerability	VCID-rnhz-y1dn-pqfg

vulnerability	VCID-szdn-6512-gqff

vulnerability	VCID-tt5f-z7g1-1yah

vulnerability	VCID-twxd-49gc-cybg

vulnerability	VCID-uzg5-a999-afhp

vulnerability	VCID-vfhb-pq1c-qkfj

vulnerability	VCID-yeyu-tq17-7bgh

vulnerability	VCID-yh5e-xrz5-e7h6

vulnerability	VCID-znxe-1d6b-wucj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/php54@2.0-1%3Farch=el6

url pkg:rpm/redhat/php54@2.0-1?arch=el7

purl pkg:rpm/redhat/php54@2.0-1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3jv2-9tx4-9fbm

vulnerability	VCID-3r4w-2t4j-9yhj

vulnerability	VCID-8fu6-sec8-xugs

vulnerability	VCID-8kym-4nwh-aqfm

vulnerability	VCID-9wvm-w1qk-xycw

vulnerability	VCID-b3sg-kb4n-b3dw

vulnerability	VCID-fhc5-qj7s-vbeb

vulnerability	VCID-fnxb-3r49-qub2

vulnerability	VCID-fprj-bhat-bbby

vulnerability	VCID-hdhg-7jda-afdf

vulnerability	VCID-hff1-gf6b-8bge

vulnerability	VCID-hmwd-fxux-ykbf

vulnerability	VCID-j1t5-sfn3-j3c1

vulnerability	VCID-n1mh-p3k8-73gm

vulnerability	VCID-nfd8-hxvz-x3au

vulnerability	VCID-nx82-guaw-r7fq

vulnerability	VCID-pvgs-r3n3-63hj

vulnerability	VCID-q9qf-ed58-3udx

vulnerability	VCID-qeb2-zmqa-x7en

vulnerability	VCID-rdy9-wgqs-8qf4

vulnerability	VCID-rnhz-y1dn-pqfg

vulnerability	VCID-szdn-6512-gqff

vulnerability	VCID-tt5f-z7g1-1yah

vulnerability	VCID-twxd-49gc-cybg

vulnerability	VCID-uzg5-a999-afhp

vulnerability	VCID-vfhb-pq1c-qkfj

vulnerability	VCID-yeyu-tq17-7bgh

vulnerability	VCID-yh5e-xrz5-e7h6

vulnerability	VCID-znxe-1d6b-wucj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/php54@2.0-1%3Farch=el7

url pkg:rpm/redhat/php54-php@5.4.40-1?arch=el6

purl pkg:rpm/redhat/php54-php@5.4.40-1?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3jv2-9tx4-9fbm

vulnerability	VCID-3r4w-2t4j-9yhj

vulnerability	VCID-8fu6-sec8-xugs

vulnerability	VCID-8kym-4nwh-aqfm

vulnerability	VCID-9wvm-w1qk-xycw

vulnerability	VCID-b3sg-kb4n-b3dw

vulnerability	VCID-fhc5-qj7s-vbeb

vulnerability	VCID-fnxb-3r49-qub2

vulnerability	VCID-fprj-bhat-bbby

vulnerability	VCID-hdhg-7jda-afdf

vulnerability	VCID-hff1-gf6b-8bge

vulnerability	VCID-hmwd-fxux-ykbf

vulnerability	VCID-j1t5-sfn3-j3c1

vulnerability	VCID-n1mh-p3k8-73gm

vulnerability	VCID-nfd8-hxvz-x3au

vulnerability	VCID-nx82-guaw-r7fq

vulnerability	VCID-pvgs-r3n3-63hj

vulnerability	VCID-q9qf-ed58-3udx

vulnerability	VCID-qeb2-zmqa-x7en

vulnerability	VCID-rdy9-wgqs-8qf4

vulnerability	VCID-rnhz-y1dn-pqfg

vulnerability	VCID-szdn-6512-gqff

vulnerability	VCID-tt5f-z7g1-1yah

vulnerability	VCID-twxd-49gc-cybg

vulnerability	VCID-uzg5-a999-afhp

vulnerability	VCID-vfhb-pq1c-qkfj

vulnerability	VCID-yeyu-tq17-7bgh

vulnerability	VCID-yh5e-xrz5-e7h6

vulnerability	VCID-znxe-1d6b-wucj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/php54-php@5.4.40-1%3Farch=el6

url pkg:rpm/redhat/php54-php@5.4.40-1?arch=el7

purl pkg:rpm/redhat/php54-php@5.4.40-1?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3jv2-9tx4-9fbm

vulnerability	VCID-3r4w-2t4j-9yhj

vulnerability	VCID-8fu6-sec8-xugs

vulnerability	VCID-8kym-4nwh-aqfm

vulnerability	VCID-9wvm-w1qk-xycw

vulnerability	VCID-b3sg-kb4n-b3dw

vulnerability	VCID-fhc5-qj7s-vbeb

vulnerability	VCID-fnxb-3r49-qub2

vulnerability	VCID-fprj-bhat-bbby

vulnerability	VCID-hdhg-7jda-afdf

vulnerability	VCID-hff1-gf6b-8bge

vulnerability	VCID-hmwd-fxux-ykbf

vulnerability	VCID-j1t5-sfn3-j3c1

vulnerability	VCID-n1mh-p3k8-73gm

vulnerability	VCID-nfd8-hxvz-x3au

vulnerability	VCID-nx82-guaw-r7fq

vulnerability	VCID-pvgs-r3n3-63hj

vulnerability	VCID-q9qf-ed58-3udx

vulnerability	VCID-qeb2-zmqa-x7en

vulnerability	VCID-rdy9-wgqs-8qf4

vulnerability	VCID-rnhz-y1dn-pqfg

vulnerability	VCID-szdn-6512-gqff

vulnerability	VCID-tt5f-z7g1-1yah

vulnerability	VCID-twxd-49gc-cybg

vulnerability	VCID-uzg5-a999-afhp

vulnerability	VCID-vfhb-pq1c-qkfj

vulnerability	VCID-yeyu-tq17-7bgh

vulnerability	VCID-yh5e-xrz5-e7h6

vulnerability	VCID-znxe-1d6b-wucj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/php54-php@5.4.40-1%3Farch=el7

url pkg:rpm/redhat/php54-php-pecl-zendopcache@7.0.4-3?arch=el7

purl pkg:rpm/redhat/php54-php-pecl-zendopcache@7.0.4-3?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3jv2-9tx4-9fbm

vulnerability	VCID-3r4w-2t4j-9yhj

vulnerability	VCID-8fu6-sec8-xugs

vulnerability	VCID-8kym-4nwh-aqfm

vulnerability	VCID-9wvm-w1qk-xycw

vulnerability	VCID-b3sg-kb4n-b3dw

vulnerability	VCID-fhc5-qj7s-vbeb

vulnerability	VCID-fnxb-3r49-qub2

vulnerability	VCID-fprj-bhat-bbby

vulnerability	VCID-hdhg-7jda-afdf

vulnerability	VCID-hff1-gf6b-8bge

vulnerability	VCID-hmwd-fxux-ykbf

vulnerability	VCID-j1t5-sfn3-j3c1

vulnerability	VCID-n1mh-p3k8-73gm

vulnerability	VCID-nfd8-hxvz-x3au

vulnerability	VCID-nx82-guaw-r7fq

vulnerability	VCID-pvgs-r3n3-63hj

vulnerability	VCID-q9qf-ed58-3udx

vulnerability	VCID-qeb2-zmqa-x7en

vulnerability	VCID-rdy9-wgqs-8qf4

vulnerability	VCID-rnhz-y1dn-pqfg

vulnerability	VCID-szdn-6512-gqff

vulnerability	VCID-tt5f-z7g1-1yah

vulnerability	VCID-twxd-49gc-cybg

vulnerability	VCID-uzg5-a999-afhp

vulnerability	VCID-vfhb-pq1c-qkfj

vulnerability	VCID-yeyu-tq17-7bgh

vulnerability	VCID-yh5e-xrz5-e7h6

vulnerability	VCID-znxe-1d6b-wucj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/php54-php-pecl-zendopcache@7.0.4-3%3Farch=el7

url pkg:rpm/redhat/php54-php-pecl-zendopcache@7.0.4-3?arch=el6

purl pkg:rpm/redhat/php54-php-pecl-zendopcache@7.0.4-3?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-3jv2-9tx4-9fbm

vulnerability	VCID-3r4w-2t4j-9yhj

vulnerability	VCID-8fu6-sec8-xugs

vulnerability	VCID-8kym-4nwh-aqfm

vulnerability	VCID-9wvm-w1qk-xycw

vulnerability	VCID-b3sg-kb4n-b3dw

vulnerability	VCID-fhc5-qj7s-vbeb

vulnerability	VCID-fnxb-3r49-qub2

vulnerability	VCID-fprj-bhat-bbby

vulnerability	VCID-hdhg-7jda-afdf

vulnerability	VCID-hff1-gf6b-8bge

vulnerability	VCID-hmwd-fxux-ykbf

vulnerability	VCID-j1t5-sfn3-j3c1

vulnerability	VCID-n1mh-p3k8-73gm

vulnerability	VCID-nfd8-hxvz-x3au

vulnerability	VCID-nx82-guaw-r7fq

vulnerability	VCID-pvgs-r3n3-63hj

vulnerability	VCID-q9qf-ed58-3udx

vulnerability	VCID-qeb2-zmqa-x7en

vulnerability	VCID-rdy9-wgqs-8qf4

vulnerability	VCID-rnhz-y1dn-pqfg

vulnerability	VCID-szdn-6512-gqff

vulnerability	VCID-tt5f-z7g1-1yah

vulnerability	VCID-twxd-49gc-cybg

vulnerability	VCID-uzg5-a999-afhp

vulnerability	VCID-vfhb-pq1c-qkfj

vulnerability	VCID-yeyu-tq17-7bgh

vulnerability	VCID-yh5e-xrz5-e7h6

vulnerability	VCID-znxe-1d6b-wucj

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/php54-php-pecl-zendopcache@7.0.4-3%3Farch=el6

url pkg:rpm/redhat/php55-php@5.5.21-4?arch=el6

purl pkg:rpm/redhat/php55-php@5.5.21-4?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11jy-h7b2-87ef

vulnerability	VCID-3r4w-2t4j-9yhj

vulnerability	VCID-7hsz-51mq-83ef

vulnerability	VCID-81ef-kadu-kyfh

vulnerability	VCID-8kym-4nwh-aqfm

vulnerability	VCID-9zsz-se7t-rbg5

vulnerability	VCID-c35h-fm6m-j7gk

vulnerability	VCID-fhc5-qj7s-vbeb

vulnerability	VCID-fnxb-3r49-qub2

vulnerability	VCID-hdhg-7jda-afdf

vulnerability	VCID-hsef-gdm7-zuah

vulnerability	VCID-j1t5-sfn3-j3c1

vulnerability	VCID-n1mh-p3k8-73gm

vulnerability	VCID-nemj-tdgu-mkbw

vulnerability	VCID-q9qf-ed58-3udx

vulnerability	VCID-szdn-6512-gqff

vulnerability	VCID-tt5f-z7g1-1yah

vulnerability	VCID-tyzc-rq14-3kge

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/php55-php@5.5.21-4%3Farch=el6

url pkg:rpm/redhat/php55-php@5.5.21-4?arch=el7

purl pkg:rpm/redhat/php55-php@5.5.21-4?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11jy-h7b2-87ef

vulnerability	VCID-3r4w-2t4j-9yhj

vulnerability	VCID-7hsz-51mq-83ef

vulnerability	VCID-81ef-kadu-kyfh

vulnerability	VCID-8kym-4nwh-aqfm

vulnerability	VCID-9zsz-se7t-rbg5

vulnerability	VCID-c35h-fm6m-j7gk

vulnerability	VCID-fhc5-qj7s-vbeb

vulnerability	VCID-fnxb-3r49-qub2

vulnerability	VCID-hdhg-7jda-afdf

vulnerability	VCID-hsef-gdm7-zuah

vulnerability	VCID-j1t5-sfn3-j3c1

vulnerability	VCID-n1mh-p3k8-73gm

vulnerability	VCID-nemj-tdgu-mkbw

vulnerability	VCID-q9qf-ed58-3udx

vulnerability	VCID-szdn-6512-gqff

vulnerability	VCID-tt5f-z7g1-1yah

vulnerability	VCID-tyzc-rq14-3kge

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/php55-php@5.5.21-4%3Farch=el7

url pkg:rpm/redhat/rh-php56-php@5.6.5-7?arch=el6

purl pkg:rpm/redhat/rh-php56-php@5.6.5-7?arch=el6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11jy-h7b2-87ef

vulnerability	VCID-3r4w-2t4j-9yhj

vulnerability	VCID-7hsz-51mq-83ef

vulnerability	VCID-81ef-kadu-kyfh

vulnerability	VCID-8kym-4nwh-aqfm

vulnerability	VCID-9zsz-se7t-rbg5

vulnerability	VCID-c35h-fm6m-j7gk

vulnerability	VCID-fhc5-qj7s-vbeb

vulnerability	VCID-fnxb-3r49-qub2

vulnerability	VCID-hdhg-7jda-afdf

vulnerability	VCID-hsef-gdm7-zuah

vulnerability	VCID-j1t5-sfn3-j3c1

vulnerability	VCID-n1mh-p3k8-73gm

vulnerability	VCID-nemj-tdgu-mkbw

vulnerability	VCID-q9qf-ed58-3udx

vulnerability	VCID-szdn-6512-gqff

vulnerability	VCID-tt5f-z7g1-1yah

vulnerability	VCID-tyzc-rq14-3kge

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-php56-php@5.6.5-7%3Farch=el6

url pkg:rpm/redhat/rh-php56-php@5.6.5-7?arch=el7

purl pkg:rpm/redhat/rh-php56-php@5.6.5-7?arch=el7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-11jy-h7b2-87ef

vulnerability	VCID-3r4w-2t4j-9yhj

vulnerability	VCID-7hsz-51mq-83ef

vulnerability	VCID-81ef-kadu-kyfh

vulnerability	VCID-8kym-4nwh-aqfm

vulnerability	VCID-9zsz-se7t-rbg5

vulnerability	VCID-c35h-fm6m-j7gk

vulnerability	VCID-fhc5-qj7s-vbeb

vulnerability	VCID-fnxb-3r49-qub2

vulnerability	VCID-hdhg-7jda-afdf

vulnerability	VCID-hsef-gdm7-zuah

vulnerability	VCID-j1t5-sfn3-j3c1

vulnerability	VCID-n1mh-p3k8-73gm

vulnerability	VCID-nemj-tdgu-mkbw

vulnerability	VCID-q9qf-ed58-3udx

vulnerability	VCID-szdn-6512-gqff

vulnerability	VCID-tt5f-z7g1-1yah

vulnerability	VCID-tyzc-rq14-3kge

resource_url http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/rh-php56-php@5.6.5-7%3Farch=el7

References

reference_url	http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=4435b9142ff9813845d5c97ab29a5d637bedb257
reference_id
reference_type
scores
url	http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=4435b9142ff9813845d5c97ab29a5d637bedb257

reference_url	http://php.net/ChangeLog-5.php
reference_id
reference_type
scores
url	http://php.net/ChangeLog-5.php

reference_url	http://rhn.redhat.com/errata/RHSA-2015-1135.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2015-1135.html

reference_url	http://rhn.redhat.com/errata/RHSA-2015-1186.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2015-1186.html

reference_url	http://rhn.redhat.com/errata/RHSA-2015-1187.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2015-1187.html

reference_url	http://rhn.redhat.com/errata/RHSA-2015-1218.html
reference_id
reference_type
scores
url	http://rhn.redhat.com/errata/RHSA-2015-1218.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3412.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-3412.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-3412

reference_id

reference_type

scores

value	0.01006
scoring_system	epss
scoring_elements	0.77246
published_at	2026-05-14T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.77199
published_at	2026-05-12T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.76983
published_at	2026-04-01T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.76989
published_at	2026-04-02T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.77018
published_at	2026-04-04T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.77
published_at	2026-04-07T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.77031
published_at	2026-04-08T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.77042
published_at	2026-04-09T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.7707
published_at	2026-04-11T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.7705
published_at	2026-04-12T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.77045
published_at	2026-04-13T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.77085
published_at	2026-04-16T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.77087
published_at	2026-04-18T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.77079
published_at	2026-04-21T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.77114
published_at	2026-04-24T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.77121
published_at	2026-04-26T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.77135
published_at	2026-04-29T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.77144
published_at	2026-05-05T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.77173
published_at	2026-05-07T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.77194
published_at	2026-05-09T12:55:00Z

value	0.01006
scoring_system	epss
scoring_elements	0.77182
published_at	2026-05-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-3412

reference_url	https://bugs.php.net/bug.php?id=69353
reference_id
reference_type
scores
url	https://bugs.php.net/bug.php?id=69353

reference_url	http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

reference_url	http://www.securityfocus.com/bid/75250
reference_id
reference_type
scores
url	http://www.securityfocus.com/bid/75250

reference_url	http://www.securitytracker.com/id/1032709
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1032709

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1232823
reference_id	1232823
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1232823

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php::::::::
reference_id	cpe:2.3:a:php:php::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php::::::::

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:::::::*
reference_id	cpe:2.3:a:php:php:5.5.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.1:::::::*
reference_id	cpe:2.3:a:php:php:5.5.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.10:::::::*
reference_id	cpe:2.3:a:php:php:5.5.10:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.10:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.11:::::::*
reference_id	cpe:2.3:a:php:php:5.5.11:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.11:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.12:::::::*
reference_id	cpe:2.3:a:php:php:5.5.12:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.12:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.13:::::::*
reference_id	cpe:2.3:a:php:php:5.5.13:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.13:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.14:::::::*
reference_id	cpe:2.3:a:php:php:5.5.14:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.14:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.15:::::::*
reference_id	cpe:2.3:a:php:php:5.5.15:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.15:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.16:::::::*
reference_id	cpe:2.3:a:php:php:5.5.16:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.16:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.17:::::::*
reference_id	cpe:2.3:a:php:php:5.5.17:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.17:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.18:::::::*
reference_id	cpe:2.3:a:php:php:5.5.18:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.18:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.19:::::::*
reference_id	cpe:2.3:a:php:php:5.5.19:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.19:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.2:::::::*
reference_id	cpe:2.3:a:php:php:5.5.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.20:::::::*
reference_id	cpe:2.3:a:php:php:5.5.20:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.20:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.21:::::::*
reference_id	cpe:2.3:a:php:php:5.5.21:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.21:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.22:::::::*
reference_id	cpe:2.3:a:php:php:5.5.22:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.22:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.23:::::::*
reference_id	cpe:2.3:a:php:php:5.5.23:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.23:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.3:::::::*
reference_id	cpe:2.3:a:php:php:5.5.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.4:::::::*
reference_id	cpe:2.3:a:php:php:5.5.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.5:::::::*
reference_id	cpe:2.3:a:php:php:5.5.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.6:::::::*
reference_id	cpe:2.3:a:php:php:5.5.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.7:::::::*
reference_id	cpe:2.3:a:php:php:5.5.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.8:::::::*
reference_id	cpe:2.3:a:php:php:5.5.8:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.8:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.9:::::::*
reference_id	cpe:2.3:a:php:php:5.5.9:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.9:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:::::::*
reference_id	cpe:2.3:a:php:php:5.6.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.1:::::::*
reference_id	cpe:2.3:a:php:php:5.6.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.2:::::::*
reference_id	cpe:2.3:a:php:php:5.6.2:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.2:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.3:::::::*
reference_id	cpe:2.3:a:php:php:5.6.3:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.3:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.4:::::::*
reference_id	cpe:2.3:a:php:php:5.6.4:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.4:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.5:::::::*
reference_id	cpe:2.3:a:php:php:5.6.5:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.5:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.6:::::::*
reference_id	cpe:2.3:a:php:php:5.6.6:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.6:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.7:::::::*
reference_id	cpe:2.3:a:php:php:5.6.7:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.7:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:6.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:6.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.1:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.1:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_server_eus:7.1:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.1:::::::*

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
reference_id	cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:::::::*

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2015-3412

reference_id

CVE-2015-3412

reference_type

scores

value	5.0
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:P/I:N/A:N

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://nvd.nist.gov/vuln/detail/CVE-2015-3412

reference_url	https://access.redhat.com/errata/RHSA-2015:1066
reference_id	RHSA-2015:1066
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1066

reference_url	https://access.redhat.com/errata/RHSA-2015:1135
reference_id	RHSA-2015:1135
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1135

reference_url	https://access.redhat.com/errata/RHSA-2015:1186
reference_id	RHSA-2015:1186
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1186

reference_url	https://access.redhat.com/errata/RHSA-2015:1187
reference_id	RHSA-2015:1187
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1187

reference_url	https://access.redhat.com/errata/RHSA-2015:1218
reference_id	RHSA-2015:1218
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:1218

reference_url	https://usn.ubuntu.com/2658-1/
reference_id	USN-2658-1
reference_type
scores
url	https://usn.ubuntu.com/2658-1/

Weaknesses

cwe_id	626
name	Null Byte Interaction Error (Poison Null Byte)
description	The product does not properly handle null bytes or NUL characters when passing data between different representations or components.

cwe_id	200
name	Exposure of Sensitive Information to an Unauthorized Actor
description	The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

cwe_id	254
name	7PK - Security Features
description	Software security is not security software. Here we're concerned with topics like authentication, access control, confidentiality, cryptography, and privilege management.

Exploits

Severity_range_score 5.0 - 5.3

Exploitability 0.5

Weighted_severity 4.8

Risk_score 2.4

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8kym-4nwh-aqfm

Vulnerability Instance