Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2019-11935

Опубликовано: 04 дек. 2019
Источник: nvd
CVSS3: 9.8
CVSS2: 7.5
EPSS Низкий

Описание

Insufficient boundary checks when processing a string in mb_ereg_replace allows access to out-of-bounds memory. This issue affects HHVM versions prior to 3.30.12, all versions between 4.0.0 and 4.8.5, all versions between 4.9.0 and 4.23.1, as well as 4.24.0, 4.25.0, 4.26.0, 4.27.0, 4.28.0, and 4.28.1.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*
Версия до 3.30.12 (исключая)
cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*
Версия от 4.0.0 (включая) до 4.8.5 (включая)
cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*
Версия от 4.9.0 (включая) до 4.23.1 (включая)
cpe:2.3:a:facebook:hhvm:4.24.0:*:*:*:*:*:*:*
cpe:2.3:a:facebook:hhvm:4.25.0:*:*:*:*:*:*:*
cpe:2.3:a:facebook:hhvm:4.26.0:*:*:*:*:*:*:*
cpe:2.3:a:facebook:hhvm:4.27.0:*:*:*:*:*:*:*
cpe:2.3:a:facebook:hhvm:4.28.0:*:*:*:*:*:*:*
cpe:2.3:a:facebook:hhvm:4.28.1:*:*:*:*:*:*:*

EPSS

Процентиль: 70%
0.00644
Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-125
CWE-120

Связанные уязвимости

ubuntu логотип

CVE-2019-11935

CVSS3: 9.8
ubuntu
около 6 лет назад

Insufficient boundary checks when processing a string in mb_ereg_replace allows access to out-of-bounds memory. This issue affects HHVM versions prior to 3.30.12, all versions between 4.0.0 and 4.8.5, all versions between 4.9.0 and 4.23.1, as well as 4.24.0, 4.25.0, 4.26.0, 4.27.0, 4.28.0, and 4.28.1.

debian логотип

CVE-2019-11935

CVSS3: 9.8
debian
около 6 лет назад

Insufficient boundary checks when processing a string in mb_ereg_repla ...

github логотип

GHSA-447v-pq45-237q

github
больше 3 лет назад

Insufficient boundary checks when processing a string in mb_ereg_replace allows access to out-of-bounds memory. This issue affects HHVM versions prior to 3.30.12, all versions between 4.0.0 and 4.8.5, all versions between 4.9.0 and 4.23.1, as well as 4.24.0, 4.25.0, 4.26.0, 4.27.0, 4.28.0, and 4.28.1.

EPSS

Процентиль: 70%
0.00644
Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-125
CWE-120