CVE-2019-11040

moderate-risk

Published 2019-06-19

When PHP EXIF extension is parsing EXIF information from an image, e.g. via exif_read_data() function, in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information disclosure or crash.

Do I need to act?

1.2% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.1/10 Critical

NETWORK / LOW complexity

Affected Products (6)

Php

Software Collections

Leap

Debian Linux

Affected Vendors

Debian Redhat Php Opensuse

References (16)

Mailing List http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00029.html

Third Party Advisory https://access.redhat.com/errata/RHSA-2019:2519

Third Party Advisory https://access.redhat.com/errata/RHSA-2019:3299

Exploit https://bugs.php.net/bug.php?id=77988

Mailing List https://seclists.org/bugtraq/2019/Sep/35

Mailing List https://seclists.org/bugtraq/2019/Sep/38

Third Party Advisory https://www.debian.org/security/2019/dsa-4527

Third Party Advisory https://www.debian.org/security/2019/dsa-4529

Mailing List http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00029.html

Third Party Advisory https://access.redhat.com/errata/RHSA-2019:2519

Third Party Advisory https://access.redhat.com/errata/RHSA-2019:3299

Exploit https://bugs.php.net/bug.php?id=77988

Mailing List https://seclists.org/bugtraq/2019/Sep/35

Mailing List https://seclists.org/bugtraq/2019/Sep/38

Third Party Advisory https://www.debian.org/security/2019/dsa-4527

Third Party Advisory https://www.debian.org/security/2019/dsa-4529

/ 100

moderate-risk

Severity 31/34 · Critical

Exploitability 4/34 · Minimal

Exposure 13/34 · Low