vulnerability

Alpine Linux: CVE-2016-6620: Deserialization of Untrusted Data

Severity
7
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
12/11/2016
Added
08/30/2017
Modified
10/01/2024

Description

An issue was discovered in phpMyAdmin. Some data is passed to the PHP unserialize() function without verification that it's valid serialized data. The unserialization can result in code execution because of the interaction with object instantiation and autoloading. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to 4.0.10.17) are affected.

Solution

alpine-linux-upgrade-phpmyadmin
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.