Page Content
The Multi-State Information Sharing & Analysis Center
(MS-ISAC) has released an advisory on multiple Hypertext Preprocessor (PHP)
vulnerabilities. An attacker could exploit some of these vulnerabilities to
take control of an affected system.
SYSTEMS AFFECTED:
PHP 7.1 versions prior to 7.1.32
PHP 7.2 versions prior to 7.2.22
PHP 7.3 versions prior to 7.3.9
CERT
Bulgaria encourages users and administrators to review MS-ISAC Advisory
2019-087 and the PHP Downloads page and apply the necessary updates.
https://www.cisecurity.org/advisory/multiple-vulnerabilities-in-php-could-allow-for-arbitrary-code-execution_2019-087/
https://www.php.net/downloads.php#gpg