Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2020-1893

Опубликовано: 03 мар. 2020
Источник: nvd
CVSS3: 7.5
CVSS2: 5
EPSS Низкий

Описание

Insufficient boundary checks when decoding JSON in TryParse reads out of bounds memory, potentially leading to DOS. This issue affects HHVM 4.45.0, 4.44.0, 4.43.0, 4.42.0, 4.41.0, 4.40.0, 4.39.0, versions between 4.33.0 and 4.38.0 (inclusive), versions between 4.9.0 and 4.32.0 (inclusive), and versions prior to 4.8.7.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*
Версия до 4.8.7 (исключая)
cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*
Версия от 4.9.0 (включая) до 4.32.0 (включая)
cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*
Версия от 4.33.0 (включая) до 4.38.0 (включая)
cpe:2.3:a:facebook:hhvm:4.39.0:*:*:*:*:*:*:*
cpe:2.3:a:facebook:hhvm:4.40.0:*:*:*:*:*:*:*
cpe:2.3:a:facebook:hhvm:4.41.0:*:*:*:*:*:*:*
cpe:2.3:a:facebook:hhvm:4.42.0:*:*:*:*:*:*:*
cpe:2.3:a:facebook:hhvm:4.43.0:*:*:*:*:*:*:*
cpe:2.3:a:facebook:hhvm:4.44.0:*:*:*:*:*:*:*
cpe:2.3:a:facebook:hhvm:4.45.0:*:*:*:*:*:*:*

EPSS

Процентиль: 69%
0.00609
Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-125
CWE-125

Связанные уязвимости

ubuntu логотип

CVE-2020-1893

CVSS3: 7.5
ubuntu
почти 6 лет назад

Insufficient boundary checks when decoding JSON in TryParse reads out of bounds memory, potentially leading to DOS. This issue affects HHVM 4.45.0, 4.44.0, 4.43.0, 4.42.0, 4.41.0, 4.40.0, 4.39.0, versions between 4.33.0 and 4.38.0 (inclusive), versions between 4.9.0 and 4.32.0 (inclusive), and versions prior to 4.8.7.

debian логотип

CVE-2020-1893

CVSS3: 7.5
debian
почти 6 лет назад

Insufficient boundary checks when decoding JSON in TryParse reads out ...

github логотип

GHSA-m8q8-334f-8qxg

github
больше 3 лет назад

Insufficient boundary checks when decoding JSON in TryParse reads out of bounds memory, potentially leading to DOS. This issue affects HHVM 4.45.0, 4.44.0, 4.43.0, 4.42.0, 4.41.0, 4.40.0, 4.39.0, versions between 4.33.0 and 4.38.0 (inclusive), versions between 4.9.0 and 4.32.0 (inclusive), and versions prior to 4.8.7.

EPSS

Процентиль: 69%
0.00609
Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-125
CWE-125