VDB
CVE-2013-1635
CVE-2013-1635
PUBLISHED
In PHP besteht eine Schwachstelle, welche zur Offenlegung von Informationen ausgenutzt werden kann. Diese Schwachstelle wird durch eine unzureichende Überprüfung von SOAP Objekteingaben von Clients verursacht. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um Systemdateien, welche für den Webserver lesbar sind, offenzulegen.
EPSS 3.16% · 87.2th percentile
Risk Scores
EPSS Score
3.16%
87.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Oracle Linux | |
| Open Source | Open Source PHP 5 |
Exploit Intelligence
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4 - Privilege escalation with sudo and sudoedit (github-poc)
- cve-2010-0426 (github-poc)
- cve-2010-0426 (github-poc)
- cve-2010-0426 (github-poc)
- cve-2010-0426 (github-poc)
- cve-2010-0426 (github-poc)
…and 5 more exploits
Timeline
- Mar 5, 2013 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- May 23, 2023 CVE Updated
- Mar 17, 2025 EPSS Score
- Mar 29, 2025 EPSS Score
- Mar 30, 2025 EPSS Score
- May 1, 2025 EPSS Score
- May 4, 2025 EPSS Score
- Jun 1, 2025 EPSS Score
- Jun 4, 2025 EPSS Score
- Jul 4, 2025 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2013/wid-sec-w-2023-1286.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1286 advisory
- https://linux.oracle.com/errata/ELSA-2023-2903.html advisory
- http://www.debian.org/security/2013/dsa-2639 advisory
- http://www.ubuntu.com/usn/usn-1761-1/ advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00034.html advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00009.html advisory
- http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00016.html advisory
- http://rhn.redhat.com/errata/RHSA-2013-1307.html advisory
- https://rhn.redhat.com/errata/RHSA-2013-1615.html advisory
- http://rhn.redhat.com/errata/RHSA-2013-1814.html advisory
- https://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_php2 advisory