CVE-2024-4577;

PHP CGI Windows Platform Remote Code Execution Vulnerability (CVE-2024-4577) Advisory

June 12, 2024

Overview NSFOCUS CERT has monitored the disclosure of a PHP CGI Windows platform remote code execution vulnerability (CVE-2024-4577) on the internet recently. Due to PHP’s oversight of the Best-Fit character mapping feature of the Windows system during its design, running PHP in CGI mode on the Windows platform and using the following language settings (Simplified […]

Search

Subscribe to the NSFOCUS Blog