VDB
BIT-php-2020-7064
BIT-php-2020-7064
PUBLISHED
CVSS 5.400000095367432 MEDIUM
Use-of-uninitialized-value in exif
Risk Scores
CVSS v3.1
5.400000095367432
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Bitnami | php | 7.2.0, 7.3.0, 7.4.0 |
Timeline
- Mar 6, 2024 CVE Published
- Aug 11, 2025 CVE Updated
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Distribution Patch
References
- http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00025.html url
- https://bugs.php.net/bug.php?id=79282 url
- https://lists.debian.org/debian-lts-announce/2020/04/msg00021.html url
- https://security.netapp.com/advisory/ntap-20200403-0001/ url
- https://usn.ubuntu.com/4330-1/ url
- https://usn.ubuntu.com/4330-2/ url
- https://www.debian.org/security/2020/dsa-4717 url
- https://www.debian.org/security/2020/dsa-4719 url
- https://www.oracle.com/security-alerts/cpujan2021.html url
- https://www.tenable.com/security/tns-2021-14 url
- https://nvd.nist.gov/vuln/detail/CVE-2020-7064 url