7.0.23

DATE	CVE	VULNERABILITY TITLE	RISK
2018-08-03	CVE-2018-14884	NULL Pointer Dereference vulnerability in multiple products An issue was discovered in PHP 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1. network low complexity php netapp CWE-476	5.0
2018-08-03	CVE-2018-14883	Out-of-bounds Read vulnerability in multiple products An issue was discovered in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8. network low complexity php canonical debian netapp CWE-125	5.0
2018-08-02	CVE-2018-14851	Out-of-bounds Read vulnerability in PHP exif_process_IFD_in_MAKERNOTE in ext/exif/exif.c in PHP before 5.6.37, 7.0.x before 7.0.31, 7.1.x before 7.1.20, and 7.2.x before 7.2.8 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted JPEG file. network php canonical debian netapp CWE-125	4.3
2018-08-02	CVE-2017-9120	Integer Overflow or Wraparound vulnerability in multiple products PHP 7.x through 7.1.5 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a long string because of an Integer overflow in mysqli_real_escape_string. network low complexity php netapp CWE-190	7.5
2018-04-29	CVE-2018-10549	Out-of-bounds Read vulnerability in PHP An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. network php canonical debian netapp CWE-125	6.8
2018-04-29	CVE-2018-10548	NULL Pointer Dereference vulnerability in PHP An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. network low complexity php canonical debian netapp CWE-476	5.0
2018-04-29	CVE-2018-10547	Cross-site Scripting vulnerability in PHP An issue was discovered in ext/phar/phar_object.c in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. network php canonical debian netapp CWE-79	4.3
2018-04-29	CVE-2018-10546	Infinite Loop vulnerability in PHP An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. network low complexity php canonical debian netapp CWE-835	5.0
2018-04-29	CVE-2018-10545	Information Exposure vulnerability in PHP An issue was discovered in PHP before 5.6.35, 7.0.x before 7.0.29, 7.1.x before 7.1.16, and 7.2.x before 7.2.4. local php canonical debian netapp CWE-200	1.9
2018-03-01	CVE-2018-7584	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in PHP In PHP through 5.6.33, 7.0.x before 7.0.28, 7.1.x through 7.1.14, and 7.2.x through 7.2.2, there is a stack-based buffer under-read while parsing an HTTP response in the php_stream_url_wrap_http_ex function in ext/standard/http_fopen_wrapper.c. network low complexity php canonical debian CWE-119	7.5