CVE-2021-21704 in PHP정보

요약

\~에 의해 MITRE • 2021. 10. 04.

In PHP versions 7.3.x below 7.3.29, 7.4.x below 7.4.21 and 8.0.x below 8.0.8, when using Firebird PDO driver extension, a malicious database server could cause crashes in various database functions, such as getAttribute(), execute(), fetch() and others by returning invalid response data that is not parsed correctly by the driver. This can result in crashes, denial of service or potentially memory corruption.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

책임이 있는

PHP Group

예약하다

2021. 01. 04.

공개

2021. 10. 04.

모더레이션

수락

항목

VDB-183743

CPE

준비됨

CWE

CWE-125 (확인됨)

CVSS

5.0 (CNA)

EPSS

0.00150

KEV

아니요

활동

매우 낮음

부문

Hostingprovider, Education, ...

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2021-21704
NVD	https://nvd.nist.gov/vuln/detail/CVE-2021-21704
CVE Details	https://www.cvedetails.com/cve/CVE-2021-21704/

◂ 이전 개요 다음 ▸

Do you need the next level of professionalism?

Upgrade your account now!