PHP < 8.1.29, 8.2.x < 8.2.20, 8.3.x < 8.3.8 Multiple Vulnerabilities - Windows CVE-2024-2408CVE-2024-4577CVE-2024-5458CVE-2024-5585
- Severity
- EPSS Score
- EPSS Percentile
- Vulnerability description
- Not available
- Risk description
- Not available
- Recommendation
- Not available
- References
- https://www.php.net/ChangeLog-8.php#8.1.29https://www.php.net/ChangeLog-8.php#8.2.20https://www.php.net/ChangeLog-8.php#8.3.8https://github.com/php/php-src/security/advisories/GHSA-3qgc-jrrr-25jvhttps://github.com/php/php-src/security/advisories/GHSA-hh26-4ppw-5864https://github.com/php/php-src/security/advisories/GHSA-9fcc-425m-g385https://github.com/php/php-src/security/advisories/GHSA-w8qr-v226-r27whttps://devco.re/blog/2024/06/06/security-alert-cve-2024-4577-php-cgi-argument-injection-vulnerability-en/https://blog.orange.tw/2024/06/cve-2024-4577-yet-another-php-rce.htmlhttps://labs.watchtowr.com/no-way-php-strikes-again-cve-2024-4577/https://github.com/watchtowrlabs/CVE-2024-4577https://people.redhat.com/~hkario/marvin/https://blog.talosintelligence.com/new-persistent-attacks-japan/https://www.bitdefender.com/en-us/blog/businessinsights/technical-advisory-update-mass-exploitation-cve-2024-4577https://www.cisa.gov/known-exploited-vulnerabilities-catalog
- Codename
- Not available
- Detectable with
- Network Scanner
- Scan engine
- OpenVAS
- Cisa Kev
Yes- Exploitable with Sniper
- No
- CVE Published
- Not available
- Detection added at
- Software Type
- Not available
- Vendor
- Not available
- Product
- Not available
Detect & validate this vulnerability
Go beyond surface scans. Get real validation with proprietary tools designed to prove what's exploitable in your environment.