Vulnerability: Code Exploitation in PHP Runtime for Apache OpenWhisk

Vulnerability: Code Exploitation in PHP Runtime for Apache OpenWhisk

CVE-2018-11756 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

In PHP Runtime for Apache OpenWhisk, a Docker action inheriting one of the Docker tags openwhisk/action-php-v7.2:1.0.0 or openwhisk/action-php-v7.1:1.0.1 (or earlier) may allow an attacker to replace the user function inside the container if the user code is vulnerable to code exploitation.

Learn more about our Cis Benchmark Audit For Apache Http Server.