The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0157 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities: CVE-2022-31625: A vulnerability was found in PHP due to an uninitialized array in pg_query_params() function. When using the Postgres database extension, supplying invalid parameters to the parameterized query may lead to PHP attempting to free memory, using uninitialized data as pointers. This flaw allows a remote attacker with the ability to control query parameters to execute arbitrary code on the system or may cause a denial of service. Tenable has extracted the preceding description block directly from the Tencent Linux security advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version…Read More