Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2019-11936

Опубликовано: 04 дек. 2019
Источник: nvd
CVSS3: 9.8
CVSS2: 7.5
EPSS Низкий

Описание

Various APC functions accept keys containing null bytes as input, leading to premature truncation of input. This issue affects HHVM versions prior to 3.30.12, all versions between 4.0.0 and 4.8.5, all versions between 4.9.0 and 4.23.1, as well as 4.24.0, 4.25.0, 4.26.0, 4.27.0, 4.28.0, and 4.28.1.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*
Версия до 3.30.12 (исключая)
cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*
Версия от 4.0.0 (включая) до 4.8.5 (включая)
cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*
Версия от 4.9.0 (включая) до 4.23.1 (включая)
cpe:2.3:a:facebook:hhvm:4.24.0:*:*:*:*:*:*:*
cpe:2.3:a:facebook:hhvm:4.25.0:*:*:*:*:*:*:*
cpe:2.3:a:facebook:hhvm:4.26.0:*:*:*:*:*:*:*
cpe:2.3:a:facebook:hhvm:4.27.0:*:*:*:*:*:*:*
cpe:2.3:a:facebook:hhvm:4.28.0:*:*:*:*:*:*:*
cpe:2.3:a:facebook:hhvm:4.28.1:*:*:*:*:*:*:*

EPSS

Процентиль: 70%
0.00644
Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-626
NVD-CWE-noinfo

Связанные уязвимости

ubuntu логотип

CVE-2019-11936

CVSS3: 9.8
ubuntu
около 6 лет назад

Various APC functions accept keys containing null bytes as input, leading to premature truncation of input. This issue affects HHVM versions prior to 3.30.12, all versions between 4.0.0 and 4.8.5, all versions between 4.9.0 and 4.23.1, as well as 4.24.0, 4.25.0, 4.26.0, 4.27.0, 4.28.0, and 4.28.1.

debian логотип

CVE-2019-11936

CVSS3: 9.8
debian
около 6 лет назад

Various APC functions accept keys containing null bytes as input, lead ...

github логотип

GHSA-jqrc-77wc-2g85

github
больше 3 лет назад

Various APC functions accept keys containing null bytes as input, leading to premature truncation of input. This issue affects HHVM versions prior to 3.30.12, all versions between 4.0.0 and 4.8.5, all versions between 4.9.0 and 4.23.1, as well as 4.24.0, 4.25.0, 4.26.0, 4.27.0, 4.28.0, and 4.28.1.

EPSS

Процентиль: 70%
0.00644
Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-626
NVD-CWE-noinfo