CVE-2020-7060

MEDIUM

Php < 7.2.27 - Out-of-Bounds Read

Title source: rule
STIX 2.1

Description

When using certain mbstring functions to convert multibyte encodings, in PHP versions 7.2.x below 7.2.27, 7.3.x below 7.3.14 and 7.4.x below 7.4.2 it is possible to supply data that will cause function mbfl_filt_conv_big5_wchar to read past the allocated buffer. This may lead to information disclosure or crash.

References (14)

Core 14
Core References
Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
https://seclists.org/bugtraq/2020/Feb/27
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2020/dsa-4626
Patch, Third Party Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/4279-1/
Third Party Advisory vendor-advisory x_refsource_debian
https://www.debian.org/security/2020/dsa-4628
Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
https://seclists.org/bugtraq/2020/Feb/31
Mailing List, Third Party Advisory mailing-list x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2020/02/msg00030.html
Mailing List, Third Party Advisory vendor-advisory x_refsource_suse
http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00023.html
Third Party Advisory vendor-advisory x_refsource_gentoo
https://security.gentoo.org/glsa/202003-57
Third Party Advisory x_refsource_misc
https://www.oracle.com/security-alerts/cpujul2020.html
Mailing List, Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20200221-0002/
Exploit, Patch, Vendor Advisory x_refsource_misc
https://bugs.php.net/bug.php?id=79037
Mailing List, Third Party Advisory mailing-list x_refsource_bugtraq
https://seclists.org/bugtraq/2021/Jan/3
Third Party Advisory x_refsource_misc
https://www.oracle.com/security-alerts/cpuApr2021.html
Patch, Third Party Advisory x_refsource_confirm
https://www.tenable.com/security/tns-2021-14

Scores

CVSS v3 6.5
EPSS 0.0640
EPSS Percentile 91.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

Details

CWE
CWE-125
Status published
Products (5)
debian/debian_linux 8.0
opensuse/leap 15.1
oracle/communications_diameter_signaling_router 8.0 - 8.4
php/php 7.2.0 - 7.2.27
tenable/tenable.sc < 5.19.0
Published Feb 10, 2020
Tracked Since Feb 18, 2026