CVE-2019-11043
critical-risk
Published 2019-10-28
In PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 in certain configurations of FPM setup it is possible to cause FPM module to write past allocated buffers into the space reserved for FCGI protocol data, thus opening the possibility of remote code execution.
Do I need to act?
!
94.1% chance of exploitation in next 30 days
EPSS score — higher than 6% of all CVEs
!
CISA KEV: actively exploited in the wild
On the Known Exploited Vulnerabilities catalog — federal agencies must patch
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.7/10
High
NETWORK
/ HIGH complexity
Affected Products (20)
References (55)
Mailing List
http://seclists.org/fulldisclosure/2020/Jan/40
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3286
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3287
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3299
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3300
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3724
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3735
Third Party Advisory
https://access.redhat.com/errata/RHSA-2019:3736
Third Party Advisory
https://access.redhat.com/errata/RHSA-2020:0322
Mailing List
https://seclists.org/bugtraq/2020/Jan/44
Third Party Advisory
https://security.netapp.com/advisory/ntap-20191031-0003/
Third Party Advisory
https://support.apple.com/kb/HT210919
and 35 more references
87
/ 100
critical-risk
Severity
26/34 · High
Exploitability
34/34 · Critical
Exposure
27/34 · High