CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Apr 15, 2022

CVE-2012-1823

High

CVSS 9.8EPSS 94.4%CISA KEVPoC Available

Description

sapi/cgi/cgi_main.c in PHP, when configured as a CGI script, does not properly handle query strings, which allows remote attackers to execute arbitrary code.

CVSS Score

9.8/ 10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS — Exploit Probability

94.4%

Higher than 100.0% of all CVEs

Weakness Classification (CWE)

CWE-77Command InjectionMITRE

Known Exploits

POC

http://eindbazen.net/2012/05/php-cgi-advisory-cve-2012-1823/Exploit http://www.kb.cert.org/vuls/id/520827Exploit http://www.php.net/ChangeLog-5.php#5.4.2Exploit https://bugs.php.net/bug.php?id=61910Exploit http://eindbazen.net/2012/05/php-cgi-advisory-cve-2012-1823/Exploit http://www.kb.cert.org/vuls/id/520827Exploit http://www.php.net/ChangeLog-5.php#5.4.2Exploit https://bugs.php.net/bug.php?id=61910Exploit

Required Action

https://nvd.nist.gov/vuln/detail/CVE-2012-1823

Risk Assessment

CRITICAL

In CISA KEV

Known exploit

Critical CVSS

High EPSS

Details

Severity: High
CVSS: 9.8
EPSS: 94.4%
CWE: CWE-77
Exploit: POC
CISA KEV: Yes
Ransomware: Unknown
Articles: 0

Timeline

Published

Mar 25, 2022

Added to KEV

Mar 25, 2022

Remediation Due

Apr 15, 2022

Affected Product

PHP

View all PHP CVEs

External Links

NVD (NIST)CVE Details MITRE CVE