| by Arround The Web

Local Root Vulnerability in PHP-FPM: Critical Vulnerability CVE-2021-21703

A critical vulnerability CVE-2021-21703 has been identified in PHP-FPM, the FastCGI process manager included in the main PHP distribution since branch 5.3 , which allows an unprivileged hosting user to execute code as root. The problem manifests itself on servers that use PHP-FPM, usually used in conjunction with Nginx, to organize the launch of PHP scripts. The researchers who identified the problem were able […]

The post Local Root Vulnerability in PHP-FPM: Critical Vulnerability CVE-2021-21703 appeared first on Linux Today.

Share Button
Read More
| by Arround The Web

10-Year-Old PHP-FPM Local Privilege Escalation Vulnerability Discovered

Security researchers are warning that a PHP-FPM local privilege escalation vulnerability impacting PHP could put millions of websites at risk. The vulnerability allows a low-privilege user to escalate his privileges to root using a bug in PHP-FPM.
The …

Share Button
Read More
| by Arround The Web

10-Year-Old PHP-FPM Local Privilege Escalation Vulnerability Discovered

Security researchers are warning that a PHP-FPM local privilege escalation vulnerability impacting PHP could put millions of websites at risk. The vulnerability allows a low-privilege user to escalate his privileges to root using a bug in PHP-FPM.
The …

Share Button
Read More