CVE-2019-11043

Warnung

Exploit

EPSS 94.11%
Veröffentlicht 28.10.2019 15:15:13
Zuletzt bearbeitet 14.02.2025 16:43:36
Quelle security@php.net
Teams Watchlist Login
Unerledigt Login

In PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 in certain configurations of FPM setup it is possible to cause FPM module to write past allocated buffers into the space reserved for FCGI protocol data, thus opening the possibility of remote code execution.

Betroffene Produkte Warnungen 1 Metriken 4 CWE 2 Referenzen 30

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Php ≫ Php Version >= 7.1.0 < 7.1.33

Php ≫ Php Version >= 7.2.0 < 7.2.24

Php ≫ Php Version >= 7.3.0 < 7.3.11

Canonical ≫ Ubuntu Linux Version12.04 SwEditionesm

Canonical ≫ Ubuntu Linux Version14.04 SwEditionesm

Canonical ≫ Ubuntu Linux Version16.04 SwEditionlts

Canonical ≫ Ubuntu Linux Version18.04 SwEditionlts

Canonical ≫ Ubuntu Linux Version19.04

Canonical ≫ Ubuntu Linux Version19.10

Debian ≫ Debian Linux Version9.0

Debian ≫ Debian Linux Version10.0

Fedoraproject ≫ Fedora Version29

Fedoraproject ≫ Fedora Version30

Fedoraproject ≫ Fedora Version31

Tenable ≫ Tenable.Sc Version < 5.19.0

Redhat ≫ Software Collections Version1.0

Redhat ≫ Enterprise Linux Version8.0

Redhat ≫ Enterprise Linux Desktop Version6.0

Redhat ≫ Enterprise Linux Desktop Version7.0

Redhat ≫ Enterprise Linux Eus Version7.7

Redhat ≫ Enterprise Linux Eus Version8.1

Redhat ≫ Enterprise Linux Eus Version8.2

Redhat ≫ Enterprise Linux Eus Version8.4

Redhat ≫ Enterprise Linux Eus Version8.6

Redhat ≫ Enterprise Linux Eus Version8.8

Redhat ≫ Enterprise Linux Eus Compute Node Version7.7

Redhat ≫ Enterprise Linux For Arm 64 Version8.0_aarch64

Redhat ≫ Enterprise Linux For Arm 64 Eus Version8.1_aarch64

Redhat ≫ Enterprise Linux For Arm 64 Eus Version8.2_aarch64

Redhat ≫ Enterprise Linux For Arm 64 Eus Version8.4_aarch64

Redhat ≫ Enterprise Linux For Arm 64 Eus Version8.6_aarch64

Redhat ≫ Enterprise Linux For Arm 64 Eus Version8.8_aarch64

Redhat ≫ Enterprise Linux For Ibm Z Systems Version6.0_s390x

Redhat ≫ Enterprise Linux For Ibm Z Systems Version7.0_s390x

Redhat ≫ Enterprise Linux For Ibm Z Systems Version8.0_s390x

Redhat ≫ Enterprise Linux For Ibm Z Systems Eus Version7.7_s390x

Redhat ≫ Enterprise Linux For Ibm Z Systems Eus Version8.1_s390x

Redhat ≫ Enterprise Linux For Ibm Z Systems Eus Version8.2_s390x

Redhat ≫ Enterprise Linux For Ibm Z Systems Eus Version8.4_s390x

Redhat ≫ Enterprise Linux For Ibm Z Systems Eus Version8.6_s390x

Redhat ≫ Enterprise Linux For Ibm Z Systems Eus Version8.8_s390x

Redhat ≫ Enterprise Linux For Power Big Endian Version6.0_ppc64

Redhat ≫ Enterprise Linux For Power Big Endian Version7.0_ppc64

Redhat ≫ Enterprise Linux For Power Big Endian Eus Version7.7_ppc64

Redhat ≫ Enterprise Linux For Power Little Endian Version7.0_ppc64le

Redhat ≫ Enterprise Linux For Power Little Endian Version8.0_ppc64le

Redhat ≫ Enterprise Linux For Power Little Endian Eus Version7.7_ppc64le

Redhat ≫ Enterprise Linux For Power Little Endian Eus Version8.1_ppc64le

Redhat ≫ Enterprise Linux For Power Little Endian Eus Version8.2_ppc64le

Redhat ≫ Enterprise Linux For Power Little Endian Eus Version8.4_ppc64le

Redhat ≫ Enterprise Linux For Power Little Endian Eus Version8.6_ppc64le

Redhat ≫ Enterprise Linux For Power Little Endian Eus Version8.8_ppc64le

Redhat ≫ Enterprise Linux For Scientific Computing Version7.0

Redhat ≫ Enterprise Linux Server Version6.0

Redhat ≫ Enterprise Linux Server Version7.0

Redhat ≫ Enterprise Linux Server Aus Version7.7

Redhat ≫ Enterprise Linux Server Aus Version8.2

Redhat ≫ Enterprise Linux Server Aus Version8.4

Redhat ≫ Enterprise Linux Server Aus Version8.6

Redhat ≫ Enterprise Linux Server Tus Version7.7

Redhat ≫ Enterprise Linux Server Tus Version8.2

Redhat ≫ Enterprise Linux Server Tus Version8.4

Redhat ≫ Enterprise Linux Server Tus Version8.6

Redhat ≫ Enterprise Linux Server Tus Version8.8

Redhat ≫ Enterprise Linux Workstation Version6.0

Redhat ≫ Enterprise Linux Workstation Version7.0

25.03.2022: CISA Known Exploited Vulnerabilities (KEV) Catalog

PHP FastCGI Process Manager (FPM) Buffer Overflow Vulnerability

Schwachstelle

In some versions of PHP in certain configurations of FPM setup, it is possible to cause FPM module to write past allocated buffers allowing the possibility of remote code execution.

Beschreibung

Apply updates per vendor instructions.

Erforderliche Maßnahmen

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	94.11%	0.999

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P
security@php.net	8.7	2.2	5.8	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://access.redhat.com/errata/RHSA-2019:3299

Third Party Advisory

https://www.tenable.com/security/tns-2021-14

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00011.html

Third Party Advisory

Mailing List

http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00014.html

Third Party Advisory

Mailing List