VDB
CVE-2018-10545
CVE-2018-10545
PUBLISHED
An issue was discovered in PHP before 5.6.35, 7.0.x before 7.0.29, 7.1.x before 7.1.16, and 7.2.x before 7.2.4. Dumpable FPM child processes allow bypassing opcache access controls because fpm_unix.c makes a PR_SET_DUMPABLE prctl call, allowing one user (in a multiuser environment) to obtain sensitive information from the process memory of a second user's PHP applications by running gcore on the PID of the PHP-FPM worker process.
EPSS 0.05% · 16.8th percentile
Risk Scores
EPSS Score
0.05%
16.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:16.04:LTS | php7.0 | 7.0.2-5, 0, 7.0.1-5 |
| Ubuntu:18.04:LTS | php7.2 | 7.2.3-1ubuntu1, 7.2.1-1ubuntu2, 7.2.2-1ubuntu1 |
| Ubuntu:14.04:LTS | php5 | 0, 5.5.3+dfsg-1ubuntu2, 5.5.3+dfsg-1ubuntu3 |
Exploit Intelligence
- https://bugs.php.net/bug.php?id=75605 (circl)
- USN-3646-2 (circl)
- 104022 (circl)
- DSA-4240 (circl)
- https://www.tenable.com/security/tns-2018-12 (circl)
- USN-3646-1 (circl)
- http://php.net/ChangeLog-5.php (circl)
- [debian-lts-announce] 20180509 [SECURITY] [DLA 1373-1] php5 security update (circl)
- http://php.net/ChangeLog-7.php (circl)
- GLSA-201812-01 (circl)
…and 3 more exploits
Timeline
- Apr 29, 2018 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- May 2, 2022 EPSS Score
- Sep 5, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2018-10545 third-party-advisory
- http://php.net/ChangeLog-5.php third-party-advisory
- http://php.net/ChangeLog-7.php third-party-advisory
- https://ubuntu.com/security/notices/USN-3646-1 vendor-advisory
- https://ubuntu.com/security/notices/USN-3646-2 vendor-advisory
- https://www.cve.org/CVERecord?id=CVE-2018-10545 third-party-advisory