Security Update:The Multi-State Information Sharing & Analysis Center (MS-ISAC) has released an advisory on a HIGH vulnerability in Hypertext Preprocessor (PHP)
Date and Time
The Multi-State Information Sharing & Analysis Center (MS-ISAC) has released an advisory on a HIGH vulnerability in Hypertext Preprocessor (PHP).
Advanced Users: For a complete description of the vulnerabilities and effected systems, visit:
- A Vulnerability in PHP Could Allow for Arbitrary Code Execution - MS-ISAC ADVISORY NUMBER: 2019-101: https://www.cisecurity.org/advisory/a-vulnerability-in-php-could-allow-for-arbitrary-code-execution_2019-101/
- PHP versions 7.3 prior to 7.3.10
WHAT’S THE PROBLEM?
A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
WHAT DO I NEED TO DO?
Users and administrators are encouraged to go to the PHP Downloads page and apply the necessary update at: https://www.php.net/downloads.php#gpg.
- IT SECURITY at https://it.ucsf.edu/security
- CIS Center for Internet Security at: https://www.cisecurity.org/resources/advisory/