Vulnerability intelligence

CVE-2024-4577

PHP-CGI OS Command Injection Vulnerability

PHP, specifically Windows-based PHP used in CGI mode, contains an OS command injection vulnerability that allows for arbitrary code execution. This vulnerability is a patch bypass for CVE-2012-1823.

CVSS Score

9.8

Critical

EPSS — Exploit Probability

0.0%

Riskier than 0% of all CVEs

Exploitation

Confirmed in the wild

Used in ransomware campaigns

Remediation

Patch available

Federal deadline 2024-07-03

CISA required action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. Deadline for federal agencies: 2024-07-03.

NVD entry Vendor patch PoC / advisory CISA KEV

1 article across 1 outlet · first covered Apr 30, 2026 · latest Apr 30, 2026

Coverage timeline

Redtail miner spread via CVE-2024-4577 Libredtail HTTP attacks
isc.sans.edu · Apr 30, 2026