CVE-2020-7065

moderate-risk
Published 2020-04-01

In PHP versions 7.3.x below 7.3.16 and 7.4.x below 7.4.4, while using mb_strtolower() function with UTF-32LE encoding, certain invalid strings could cause PHP to overwrite stack-allocated buffer. This could lead to memory corruption, crashes and potentially code execution.

Do I need to act?

~
5.0% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.4/10 High
NETWORK / HIGH complexity

Affected Products (9)

Php

Affected Vendors

Debian Php Canonical Tenable

References (16)

Exploit https://bugs.php.net/bug.php?id=79371
Third Party Advisory https://security.netapp.com/advisory/ntap-20200403-0001/
Third Party Advisory https://usn.ubuntu.com/4330-1/
Third Party Advisory https://usn.ubuntu.com/4330-2/
Third Party Advisory https://www.debian.org/security/2020/dsa-4719
Patch https://www.oracle.com/security-alerts/cpuoct2021.html
Release Notes https://www.php.net/ChangeLog-7.php#7.4.4
Third Party Advisory https://www.tenable.com/security/tns-2021-14
Exploit https://bugs.php.net/bug.php?id=79371
Third Party Advisory https://security.netapp.com/advisory/ntap-20200403-0001/
Third Party Advisory https://usn.ubuntu.com/4330-1/
Third Party Advisory https://usn.ubuntu.com/4330-2/
Third Party Advisory https://www.debian.org/security/2020/dsa-4719
Patch https://www.oracle.com/security-alerts/cpuoct2021.html
Release Notes https://www.php.net/ChangeLog-7.php#7.4.4
Third Party Advisory https://www.tenable.com/security/tns-2021-14
45
/ 100
moderate-risk
Severity 22/34 · High
Exploitability 8/34 · Low
Exposure 15/34 · Moderate