CVE-2016-6871

Опубликовано: 17 фев. 2017

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

Integer overflow in bcmath in Facebook HHVM before 3.15.0 allows attackers to have unspecified impact via unknown vectors, which triggers a buffer overflow.

Ссылки

http://www.openwall.com/lists/oss-security/2016/08/11/1
Mailing List
Patch
Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/08/19/1
Mailing List
Patch
Third Party Advisory
https://github.com/facebook/hhvm/commit/c00fc9d3003eb06226b58b6a48555f1456ee2475
Patch
http://www.openwall.com/lists/oss-security/2016/08/11/1
Mailing List
Patch
Third Party Advisory
http://www.openwall.com/lists/oss-security/2016/08/19/1
Mailing List
Patch
Third Party Advisory
https://github.com/facebook/hhvm/commit/c00fc9d3003eb06226b58b6a48555f1456ee2475
Patch

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*

Версия до 3.14.5 (включая)

EPSS

Процентиль: 66%

0.00512

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-190

Связанные уязвимости

CVE-2016-6871

CVSS3: 9.8

ubuntu

почти 9 лет назад

Integer overflow in bcmath in Facebook HHVM before 3.15.0 allows attackers to have unspecified impact via unknown vectors, which triggers a buffer overflow.

CVE-2016-6871

CVSS3: 9.8

debian

почти 9 лет назад

Integer overflow in bcmath in Facebook HHVM before 3.15.0 allows attac ...

GHSA-69p6-g3px-hvhw

CVSS3: 9.8

github

больше 3 лет назад

Integer overflow in bcmath in Facebook HHVM before 3.15.0 allows attackers to have unspecified impact via unknown vectors, which triggers a buffer overflow.

EPSS

Процентиль: 66%

0.00512

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-190