U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2017-11147

Change History

Modified Analysis 7/20/2022 1:56:00 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*
Changed CPE Configuration
OR
     *cpe:2.3:a:php:php:*:*:*:*:*:*:*:* versions up to (including) 5.6.29
     *cpe:2.3:a:php:php:7.0.0:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:7.0.1:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:7.0.2:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:7.0.3:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:7.0.4:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:7.0.5:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:7.0.6:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:7.0.7:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:7.0.8:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:7.0.9:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:7.0.10:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:7.0.11:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:7.0.12:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:7.0.13:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:7.0.14:*:*:*:*:*:*:*
OR
     *cpe:2.3:a:php:php:*:*:*:*:*:*:*:* versions up to (excluding) 5.6.30
     *cpe:2.3:a:php:php:*:*:*:*:*:*:*:* versions from (including) 7.0.0 up to (excluding) 7.0.15
     *cpe:2.3:a:php:php:*:*:*:*:*:*:*:* versions from (including) 7.1.0 up to (excluding) 7.1.1
Removed CVSS V3
NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

								
						
Added CVSS V3.1

								
							
							
						
NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Changed Reference Type
http://git.php.net/?p=php-src.git;a=commit;h=e5246580a85f031e1a3b8064edbaa55c1643a451 Mailing List, Third Party Advisory
http://git.php.net/?p=php-src.git;a=commit;h=e5246580a85f031e1a3b8064edbaa55c1643a451 Broken Link, Mailing List, Vendor Advisory
Changed Reference Type
http://openwall.com/lists/oss-security/2017/07/10/6 Mailing List, Third Party Advisory
http://openwall.com/lists/oss-security/2017/07/10/6 Mailing List, Patch, Third Party Advisory
Changed Reference Type
http://www.securityfocus.com/bid/99607 No Types Assigned
http://www.securityfocus.com/bid/99607 Third Party Advisory, VDB Entry
Changed Reference Type
https://access.redhat.com/errata/RHSA-2018:1296 No Types Assigned
https://access.redhat.com/errata/RHSA-2018:1296 Third Party Advisory
Changed Reference Type
https://bugs.php.net/bug.php?id=73773 Vendor Advisory
https://bugs.php.net/bug.php?id=73773 Exploit, Issue Tracking, Vendor Advisory
Changed Reference Type
https://security.netapp.com/advisory/ntap-20180112-0001/ No Types Assigned
https://security.netapp.com/advisory/ntap-20180112-0001/ Third Party Advisory
Changed Reference Type
https://www.tenable.com/security/tns-2017-12 No Types Assigned
https://www.tenable.com/security/tns-2017-12 Third Party Advisory