National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Vulnerability Change Record for CVE-2016-8670

Change History

Initial Analysis - 1/5/2017 12:57:47 PM

Action Type Old Value New Value
Changed Reference Type
http://www.openwall.com/lists/oss-security/2016/10/15/1 No Types Assigned
http://www.openwall.com/lists/oss-security/2016/10/15/1 Third Party Advisory
Changed Reference Type
http://www.php.net/ChangeLog-5.php No Types Assigned
http://www.php.net/ChangeLog-5.php Release Notes, Vendor Advisory
Changed Reference Type
http://www.php.net/ChangeLog-7.php No Types Assigned
http://www.php.net/ChangeLog-7.php Release Notes, Vendor Advisory
Changed Reference Type
https://bugs.php.net/bug.php?id=73280 No Types Assigned
https://bugs.php.net/bug.php?id=73280 Vendor Advisory
Changed Reference Type
https://github.com/libgd/libgd/commit/53110871935244816bbb9d131da0bccff734bfe9 No Types Assigned
https://github.com/libgd/libgd/commit/53110871935244816bbb9d131da0bccff734bfe9 Vendor Advisory
Added CWE
CWE-119
Added CVSS V2
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Added CVSS V3
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Added CPE Configuration
AND
     OR
          *cpe:2.3:a:libgd:libgd:2.2.3:*:*:*:*:*:*:* (and previous)
     OR
          cpe:2.3:a:php:php:5.6.27:*:*:*:*:*:*:* (and previous)
          cpe:2.3:a:php:php:7.0.0:*:*:*:*:*:*:*
          cpe:2.3:a:php:php:7.0.1:*:*:*:*:*:*:*
          cpe:2.3:a:php:php:7.0.10:*:*:*:*:*:*:*
          cpe:2.3:a:php:php:7.0.11:*:*:*:*:*:*:*
          cpe:2.3:a:php:php:7.0.12:*:*:*:*:*:*:*
          cpe:2.3:a:php:php:7.0.2:*:*:*:*:*:*:*
          cpe:2.3:a:php:php:7.0.3:*:*:*:*:*:*:*
          cpe:2.3:a:php:php:7.0.4:*:*:*:*:*:*:*
          cpe:2.3:a:php:php:7.0.5:*:*:*:*:*:*:*
          cpe:2.3:a:php:php:7.0.6:*:*:*:*:*:*:*
          cpe:2.3:a:php:php:7.0.7:*:*:*:*:*:*:*
          cpe:2.3:a:php:php:7.0.8:*:*:*:*:*:*:*
          cpe:2.3:a:php:php:7.0.9:*:*:*:*:*:*:*