CVE-2020-7067

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

In PHP versions 7.2.x below 7.2.30, 7.3.x below 7.3.17 and 7.4.x below 7.4.5, if PHP is compiled with EBCDIC support (uncommon), urldecode() function can be made to access locations past the allocated memory, due to erroneously using signed numbers as array indexes.

References

https://bugs.php.net/bug.php?id=79465

https://security.netapp.com/advisory/ntap-20200504-0001/

https://www.debian.org/security/2020/dsa-4717

https://www.debian.org/security/2020/dsa-4719

https://www.oracle.com/security-alerts/cpuoct2020.html

https://www.oracle.com/security-alerts/cpuApr2021.html

Details

Source: MITRE

Published: 2020-04-27

Updated: 2021-07-22

Type: CWE-125

Risk Information

CVSS v2

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3

Base Score: 7.5

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score: 3.6

Exploitability Score: 3.9

Severity: HIGH

Tenable Plugins

View all (17 total)

IDNameProductFamilySeverity
152986Tenable SecurityCenter < 5.19.0 Multiple Vulnerabilities (TNS-2021-14)NessusMisc.
high
151985Tenable.sc < 5.19.0 Multiple Vulnerabilities (TNS-2021-14) (deprecated)NessusMisc.
high
140834EulerOS 2.0 SP3 : php (EulerOS-SA-2020-2067)NessusHuawei Local Security Checks
critical
139998EulerOS Virtualization for ARM 64 3.0.6.0 : php (EulerOS-SA-2020-1895)NessusHuawei Local Security Checks
high
139151EulerOS 2.0 SP8 : php (EulerOS-SA-2020-1821)NessusHuawei Local Security Checks
high
138225Debian DSA-4719-1 : php7.3 - security updateNessusDebian Local Security Checks
high
138106Debian DSA-4717-1 : php7.0 - security updateNessusDebian Local Security Checks
medium
112499PHP 7.2.x < 7.2.30 Multiple VulnerabilitiesWeb Application ScanningComponent Vulnerability
high
112498PHP 7.3.x < 7.3.17 Multiple VulnerabilitiesWeb Application ScanningComponent Vulnerability
high
112497PHP 7.4.x < 7.4.5 Multiple VulnerabilitiesWeb Application ScanningComponent Vulnerability
high
137474EulerOS 2.0 SP2 : php (EulerOS-SA-2020-1632)NessusHuawei Local Security Checks
high
136629Amazon Linux AMI : php73 (ALAS-2020-1368)NessusAmazon Linux Local Security Checks
high
136628Amazon Linux AMI : php72 (ALAS-2020-1367)NessusAmazon Linux Local Security Checks
medium
135980Debian DLA-2188-1 : php5 security updateNessusDebian Local Security Checks
medium
135969PHP 7.4.x < 7.4.5 urldecode OOB ReadNessusCGI abuses
high
135926PHP 7.2.x < 7.2.30 Multiple VulnerabilitiesNessusCGI abuses
high
135918PHP 7.3.x < 7.3.17 Out of Bounds Read VulnerabilityNessusCGI abuses
high