Use-after-free vulnerability in wddx.c in the WDDX extension in PHP before 5.5.33 and 5.6.x before 5.6.19 allows remote attackers to cause a denial of service (memory corruption and application. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Epss exploitation probability 72.3% and no vendor patch available.
Denial Of Service
PHP
Buffer Overflow
Mac Os X
NVD
CVSS 3.0
9.8
EPSS
72.3%
Threat
4.1