CVE-2019-11046

Advisory lineage Upstream: 0 Downstream: 15

Downstream

DLA-2050-1 DSA-4626-1 DSA-4628-1 MGASA-2019-0412 OPENSUSE-SU-2020:0080-1 OPENSUSE-SU-2024:11167-1

Modified

Published: 23 Dec 2019, 02:40

Last modified:16 Sept 2024, 17:52

Vulnerability Summary

Overall Risk (default)

low

23/100

CVSS Score

5.3 MEDIUM

v3.1 (nvd)

EPSS Score

8.24% LOW

8% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

23 Dec 2019, 02:40

Published

Vulnerability first disclosed

16 Sept 2024, 17:52

Last Modified

Vulnerability information updated

Description

In PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0, PHP bcmath extension functions on some systems, including Windows, can be tricked into reading beyond the allocated space by supplying it with string containing characters that are identified as numeric by the OS but aren't ASCII numbers. This can read to disclosure of the content of some memory locations.

CVSS Metrics

v3.1•LOW•Score: 3.7CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
v3.1•MEDIUM•Score: 5.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
v2.0•MEDIUM•Score: 5AV:N/AC:L/Au:N/C:P/I:N/A:N

EPSS Trends

Current EPSS score: 8.24%• Percentile: 92%

Techniques & Countermeasures

CWE-125•Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.

Affected Systems

canonical•ubuntu_linux
12.04 | 14.04 | 16.04 | 18.04 | 19.04 | 19.10
debian•debian_linux
8.0 | 9.0 | 10.0
fedoraproject•fedora
30 | 31
opensuse•leap
15.1
Unknown•PHP
≥ 7.2.x, < 7.2.26 | ≥ 7.3.x, < 7.3.13 | ≥ 7.4.x, < 7.4.1
Unknown•PHP
≥ 7.2.0, ≤ 7.2.26 | ≥ 7.3.0, ≤ 7.3.13 | 7.4.0
tenable•securitycenter
< 5.19.0