CVE-2020-7059

MEDIUM

Php < 7.2.27 - Out-of-Bounds Read

Title source: rule
STIX 2.1

Description

When using fgetss() function to read data with stripping tags, in PHP versions 7.2.x below 7.2.27, 7.3.x below 7.3.14 and 7.4.x below 7.4.2 it is possible to supply data that will cause this function to read past the allocated buffer. This may lead to information disclosure or crash.

References (14)

Core 14
Core References
Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
https://seclists.org/bugtraq/2020/Feb/27
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2020/dsa-4626
Patch, Third Party Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4279-1/
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2020/dsa-4628
Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
https://seclists.org/bugtraq/2020/Feb/31
Third Party Advisory mailing-list x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2020/02/msg00030.html
Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00023.html
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/202003-57
Third Party Advisory x_refsource_misc
https://www.oracle.com/security-alerts/cpujul2020.html
Exploit, Vendor Advisory x_refsource_misc
https://bugs.php.net/bug.php?id=79099
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20200221-0002/
Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
https://seclists.org/bugtraq/2021/Jan/3
Third Party Advisory x_refsource_misc
https://www.oracle.com/security-alerts/cpuApr2021.html
Patch, Third Party Advisory x_refsource_confirm
https://www.tenable.com/security/tns-2021-14

Scores

CVSS v3 6.5
EPSS 0.0237
EPSS Percentile 85.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

Details

CWE
CWE-125
Status published
Products (5)
debian/debian_linux 8.0
opensuse/leap 15.1
oracle/communications_diameter_signaling_router 8.0 - 8.4
php/php 7.2.0 - 7.2.27
tenable/tenable.sc < 5.19.0
Published Feb 10, 2020
Tracked Since Feb 18, 2026