PHP PHP : Security vulnerabilities, CVEs published in June 2018

CVE-2018-12882

exif_read_from_impl in ext/exif/exif.c in PHP 7.2.x through 7.2.7 allows attackers to trigger a use-after-free (in exif_read_from_file) because it closes a stream that it is not responsible for closing. The vulnerable code is reachable through the PHP exif_read_data function.

Max CVSS

9.8

EPSS Score

0.54%

Published

2018-06-26

Updated

2019-03-12

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

PHP » PHP : Security Vulnerabilities, CVEs, Published In June 2018

CVE-2018-12882