CVE-2015-7503

Name of the Vulnerable Software and Affected Versions Zend Framework versions prior to 2.4.9 zend-crypt versions 2.4.x prior to 2.4.9 zend-crypt versions 2.5.x prior to 2.5.2

Description The issue allows remote attackers to recover the RSA private key.

Recommendations For Zend Framework versions prior to 2.4.9, update to version 2.4.9 or later. For zend-crypt versions 2.4.x prior to 2.4.9, update to version 2.4.9 or later. For zend-crypt versions 2.5.x prior to 2.5.2, update to version 2.5.2 or later.