Search for vulnerabilities
Vulnerability details: VCID-vdcw-7umn-aaaa
Vulnerability ID VCID-vdcw-7umn-aaaa
Aliases CVE-2015-4148
Summary CVE-2015-4148 php: SoapClient's do_soap_call() type confusion after unserialize()
Status Published
Exploitability 2.0
Weighted Severity 8.0
Risk 10.0
Affected and Fixed Packages Package Details
Weaknesses (2)
CWE-20 Improper Input Validation
CWE-843 Access of Resource Using Incompatible Type ('Type Confusion')
System Score Found at
generic_textual Medium http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-4148.html
generic_textual Medium http://php.net/ChangeLog-5.php
rhas Moderate https://access.redhat.com/errata/RHSA-2015:1053
rhas Important https://access.redhat.com/errata/RHSA-2015:1066
rhas Important https://access.redhat.com/errata/RHSA-2015:1135
rhas Moderate https://access.redhat.com/errata/RHSA-2015:1218
epss 0.03057 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.03057 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.03057 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.03057 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.03057 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.03057 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.03057 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.03057 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.03057 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.03565 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.03565 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.03565 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.03565 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.12605 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.13502 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.14263 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.14263 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.14263 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.14263 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.14784 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.14784 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.14784 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.14784 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.19265 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.19265 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.19265 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.19265 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.19265 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.19265 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.19265 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.19265 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.19265 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.19265 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.21191 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.21191 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
epss 0.21191 https://api.first.org/data/v1/epss?cve=CVE-2015-4148
rhbs low https://bugzilla.redhat.com/show_bug.cgi?id=1226916
generic_textual Medium https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4148
cvssv2 5.0 https://nvd.nist.gov/vuln/detail/CVE-2015-4148
generic_textual Low https://ubuntu.com/security/notices/USN-2658-1
generic_textual Medium http://www.openwall.com/lists/oss-security/2015/03/20/14
generic_textual Medium http://www.openwall.com/lists/oss-security/2015/06/01/4
generic_textual Low http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
Reference id Reference type URL
http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html
http://lists.opensuse.org/opensuse-updates/2015-06/msg00028.html
http://openwall.com/lists/oss-security/2015/06/01/4
http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-4148.html
http://php.net/ChangeLog-5.php
http://rhn.redhat.com/errata/RHSA-2015-1053.html
http://rhn.redhat.com/errata/RHSA-2015-1066.html
http://rhn.redhat.com/errata/RHSA-2015-1135.html
http://rhn.redhat.com/errata/RHSA-2015-1218.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-4148.json
https://api.first.org/data/v1/epss?cve=CVE-2015-4148
https://bugs.php.net/bug.php?id=69085
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4148
https://security.gentoo.org/glsa/201606-10
https://support.apple.com/kb/HT205031
https://ubuntu.com/security/notices/USN-2658-1
http://www.openwall.com/lists/oss-security/2015/03/20/14
http://www.openwall.com/lists/oss-security/2015/06/01/4
http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
http://www.securityfocus.com/bid/75103
http://www.securitytracker.com/id/1032459
1226916 https://bugzilla.redhat.com/show_bug.cgi?id=1226916
cpe:2.3:a:php:php:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:alpha1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:alpha1:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:alpha2:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:alpha2:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:alpha3:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:alpha3:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:alpha4:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:alpha4:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:alpha5:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:alpha5:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:alpha6:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:alpha6:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:beta1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:beta1:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:beta2:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:beta2:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:beta3:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:beta3:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:beta4:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:beta4:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:rc1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:rc1:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.0:rc2:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.0:rc2:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.1:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.10:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.10:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.11:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.11:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.12:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.12:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.13:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.13:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.14:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.14:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.18:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.18:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.19:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.19:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.2:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.20:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.20:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.21:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.21:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.22:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.22:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.3:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.4:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.5:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.6:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.7:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.7:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.8:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.8:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.5.9:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.5.9:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:alpha1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:alpha1:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:alpha2:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:alpha2:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:alpha3:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:alpha3:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:alpha4:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:alpha4:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:alpha5:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:alpha5:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:beta1:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:beta1:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:beta2:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:beta2:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:beta3:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:beta3:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.0:beta4:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.0:beta4:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.2:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.2:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.3:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.3:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.4:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.4:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.5:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.5:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.6.6:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:php:php:5.6.6:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.1:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_eus:7.1:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_eus:7.1:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
CVE-2015-4148 https://nvd.nist.gov/vuln/detail/CVE-2015-4148
CVE-2015-4148;OSVDB-125855;OSVDB-119772 Exploit http://lab.truel.it/d/advisories/TL-2015-PHP04.txt
CVE-2015-4148;OSVDB-125855;OSVDB-119772 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/38304.py
RHSA-2015:1053 https://access.redhat.com/errata/RHSA-2015:1053
RHSA-2015:1066 https://access.redhat.com/errata/RHSA-2015:1066
RHSA-2015:1135 https://access.redhat.com/errata/RHSA-2015:1135
RHSA-2015:1218 https://access.redhat.com/errata/RHSA-2015:1218
USN-2658-1 https://usn.ubuntu.com/2658-1/
Data source Exploit-DB
Date added Sept. 24, 2015
Description SMF (Simple Machine Forum) 2.0.10 - Remote Memory Exfiltration
Ransomware campaign use Unknown
Source publication date Sept. 24, 2015
Exploit type webapps
Platform php
Source update date Sept. 24, 2015
Source URL http://lab.truel.it/d/advisories/TL-2015-PHP04.txt
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N Found at https://nvd.nist.gov/vuln/detail/CVE-2015-4148
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.91254
EPSS Score 0.03057
Published At Nov. 1, 2024, midnight
Date Actor Action Source VulnerableCode Version
There are no relevant records.