GCVE - cpe:2.3:a:php:php:7.1.0:-:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:php:php:7.1.0:-:*:*:*:*:*:*

part: a version: 7.1.0 update: -

Vendor	Php (`9aec2613-7a27-5ce5-8ac7-140851d8da4c`)
Product	Php (`38640b93-5029-5cca-a025-ab7d01c98b51`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:github/php/php-src`	purl2cpe	2026-06-01 10:17:42.513441

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2016-10159`	vulnerable	2026-06-03 14:35:23.499235	Details available Integer overflow in the phar_parse_pharfile function in ext/phar/phar.c in PHP before 5.6.30 and 7.0.x before 7.0.15 allows remote attackers to cause a denial of service (memory consumption or application crash) via a truncated manifest entry in a PHAR archive. Published: 2017-01-24T21:00:00.000Z Updated: 2024-08-06T03:14:42.140Z Open on db.gcve.eu Reference links https://github.com/php/php-src/commit/ca46d0acbce55019b970fcd4c1e8a10edfdded93 https://access.redhat.com/errata/RHSA-2018:1296 http://php.net/ChangeLog-5.php https://security.netapp.com/advisory/ntap-20180112-0001/ https://www.tenable.com/security/tns-2017-04	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.