CVE-2016-3124

MEDIUM

Simplesamlphp < 1.14.0 - Information Disclosure

Title source: rule

Description

The sanitycheck module in SimpleSAMLphp before 1.14.1 allows remote attackers to learn the PHP version on the system via unspecified vectors.

References (2)

Scores

CVSS v3 5.3
EPSS 0.0020
EPSS Percentile 42.2%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Classification

CWE
CWE-200
Status published

Affected Products (3)

simplesamlphp/simplesamlphp < 1.14.0
simplesamlphp/simplesamlphp < 1.14.1Packagist
n/a/n/a

Timeline

Published Feb 07, 2017
Tracked Since Feb 18, 2026