CVE-2015-4600

The SoapClient implementation in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an unexpected data type, related to "type confusion" issues in the (1) SoapClient::__getLastRequest, (2) SoapClient::__getLastResponse, (3) SoapClient::__getLastRequestHeaders, (4) SoapClient::__getLastResponseHeaders, (5) SoapClient::__getCookies, and (6) SoapClient::__setCookie methods.

Published: May 16, 2016
Updated: Apr 13, 2023
CVE: CVE-2015-4600
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
redhat / enterprise_linux_desktop	7.0	7.0.x
redhat / enterprise_linux_workstation	7.0	7.0.x
redhat / enterprise_linux_server	7.0	7.0.x
redhat / enterprise_linux_hpc_node	7.0	7.0.x
redhat / enterprise_linux_server_eus	7.1	7.1.x
redhat / enterprise_linux_hpc_node_eus	7.1	7.1.x
php / php	5.6.1	5.6.1.x
php / php	5.6.5	5.6.5.x
php / php	-	5.4.39.x
php / php	5.5.19	5.5.19.x
php / php	5.5.0	5.5.0.x
php / php	5.5.16	5.5.16.x
php / php	5.6.0	5.6.0.x
php / php	5.5.1	5.5.1.x
php / php	5.5.5	5.5.5.x
php / php	5.6.4	5.6.4.x
php / php	5.5.21	5.5.21.x
php / php	5.6.6	5.6.6.x
php / php	5.5.17	5.5.17.x
php / php	5.5.14	5.5.14.x
php / php	5.5.7	5.5.7.x
php / php	5.6.2	5.6.2.x
php / php	5.5.12	5.5.12.x
php / php	5.5.6	5.5.6.x
php / php	5.6.7	5.6.7.x
php / php	5.5.3	5.5.3.x
php / php	5.5.23	5.5.23.x
php / php	5.5.8	5.5.8.x
php / php	5.5.15	5.5.15.x
php / php	5.5.11	5.5.11.x
php / php	5.5.13	5.5.13.x
php / php	5.5.4	5.5.4.x
php / php	5.5.10	5.5.10.x
php / php	5.6.3	5.6.3.x
php / php	5.5.22	5.5.22.x
php / php	5.5.18	5.5.18.x
php / php	5.5.20	5.5.20.x
php / php	5.5.2	5.5.2.x
php / php	5.5.9	5.5.9.x

Vulnerability Database

289,599

CVE-2015-4600