CVE-2020-7062 — NULL Pointer Dereference in Group PHP

CWE-476 — NULL Pointer Dereference10 documents8 sources

Severity

7.5HIGHNVD

EPSS

1.2%

top 21.44%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

PHP Group PHP Php5 PHP +3 more

Timeline

PublishedFeb 27

Latest updateMay 24

Description

In PHP versions 7.2.x below 7.2.28, 7.3.x below 7.3.15 and 7.4.x below 7.4.3, when using file upload functionality, if upload progress tracking is enabled, but session.upload_progress.cleanup is set to 0 (disabled), and the file upload fails, the upload procedure would try to clean up data that does not exist and encounter null pointer dereference, which would likely lead to a crash.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

▶CVEListV5php_group/php7.3.x — 7.3.15+2

▶Ubuntuphp5/php5< 5.5.9+dfsg-1ubuntu4.29+esm11

▶NVDphp/php7.2.0 — 7.2.27+2

▶NVDopensuse/leap15.1

Also affects: Debian Linux 10.0, 8.0, 9.0, Ubuntu Linux 12.04, 14.04, 16.04, 18.04, 19.10

🔴Vulnerability Details

GHSA

GHSA-rrwc-c46p-f3v6: In PHP versions 7↗2022-05-24

▶

OSV

php5, php7.0, php7.2, php7.3 vulnerabilities↗2020-04-15

▶

CVEList

Null Pointer Dereference in PHP Session Upload Progress↗2020-02-27

▶

OSV

CVE-2020-7062: In PHP versions 7↗2020-02-27

▶

📋Vendor Advisories

Ubuntu

PHP vulnerabilities↗2020-04-15

▶

Red Hat

php: NULL pointer dereference in PHP session upload progress↗2020-02-04

▶

Debian

CVE-2020-7062: php7.4 - In PHP versions 7.2.x below 7.2.28, 7.3.x below 7.3.15 and 7.4.x below 7.4.3, wh...↗2020

▶

💬Community

Bugzilla

CVE-2020-7062 php: NULL pointer dereference in PHP session upload progress↗2020-02-28

▶

Bugzilla

CVE-2020-7062 php: NULL pointer dereference in PHP session upload progress [fedora-all]↗2020-02-28

▶