VYPR
Critical severity9.8NVD Advisory· Published Jun 8, 2017· Updated Jun 17, 2026

CVE-2016-4473

CVE-2016-4473

Description

/ext/phar/phar_object.c in PHP 7.0.7 and 5.6.x allows remote attackers to execute arbitrary code. NOTE: Introduced as part of an incomplete fix to CVE-2015-6833.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

37
  • PHP/PHP33 versions
    cpe:2.3:a:php:php:5.6.0:alpha1:*:*:*:*:*:*+ 32 more
    • cpe:2.3:a:php:php:5.6.0:alpha1:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.0:alpha2:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.0:alpha3:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.0:alpha4:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.0:alpha5:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.0:beta1:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.0:beta2:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.0:beta3:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.0:beta4:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.10:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.11:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.12:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.13:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.14:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.15:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.16:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.17:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.18:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.19:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.2:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.20:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.21:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.22:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.3:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.4:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.5:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.6:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.7:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.8:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:5.6.9:*:*:*:*:*:*:*
    • cpe:2.3:a:php:php:7.0.7:*:*:*:*:*:*:*
    • (no CPE)range: 7.0.7, 5.6.x
  • cpe:2.3:o:suse:linux_enterprise_module_for_web_scripting:12:*:*:*:*:*:*:*
  • cpe:2.3:o:suse:linux_enterprise_software_development_kit:12:sp1:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.