National Cyber Warfare Foundation (NCWF)

CVE-2019-11040
0 user ratings		2019-04-09 00:00:00
milo
CVEs
 - archive -- 

CVE-2019-11040

Date: 2019-04-09

When PHP EXIF extension is parsing EXIF information from an image, e.g. via exif_read_data() function, in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information disclosure or crash.



References:


Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
CVEs


Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.