CVE-2019-11048 — Integer Overflow or Wraparound in Group PHP

CWE-190 — Integer Overflow or Wraparound CWE-400 — Uncontrolled Resource Consumption10 documents9 sources

Severity

5.3MEDIUMNVD

EPSS

12.7%

top 5.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

PHP Group PHP PHP

Timeline

PublishedMay 20

Latest updateMay 24

Description

In PHP versions 7.2.x below 7.2.31, 7.3.x below 7.3.18 and 7.4.x below 7.4.6, when HTTP file uploads are allowed, supplying overly long filenames or field names could lead PHP engine to try to allocate oversized memory storage, hit the memory limit and stop processing the request, without cleaning up temporary files created by upload request. This potentially could lead to accumulation of uncleaned temporary files exhausting the disk space on the target server.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

▶NVDphp/php7.2.0 — 7.2.31+2

▶CVEListV5php_group/php7.3.x — 7.3.18+2

🔴Vulnerability Details

GHSA

GHSA-wxwf-j52f-79g8: In PHP versions 7↗2022-05-24

▶

OSV

CVE-2019-11048: In PHP versions 7↗2020-05-20

▶

CVEList

Temporary files are not cleaned after OOM when parsing HTTP request data↗2020-05-20

▶

📋Vendor Advisories

Oracle

Oracle Oracle Communications Risk Matrix: Core (PHP) — CVE-2019-11048↗2020-10-15

▶

Ubuntu

PHP vulnerability↗2020-05-27

▶

Red Hat

php: Integer wraparounds when receiving multipart forms↗2020-05-14

▶

Debian

CVE-2019-11048: php7.4 - In PHP versions 7.2.x below 7.2.31, 7.3.x below 7.3.18 and 7.4.x below 7.4.6, wh...↗2019

▶

💬Community

Bugzilla

CVE-2019-11048 php: 2 integer wraparound when receiving multipart forms [fedora-all]↗2020-05-20

▶

Bugzilla

CVE-2019-11048 php: Integer wraparounds when receiving multipart forms↗2020-05-20

▶