CVE-2020-1893

🗓️ 03 Mar 2020 15:00:26Reported by facebookType

Insufficient boundary checks in JSON decoding can lead to DO

Reporter	Title	Published	Views	Family All 9
Cvelist	CVE-2020-1893	3 Mar 202015:00	–	cvelist
EUVD	EUVD-2020-12719	7 Oct 202500:30	–	euvd
NVD	CVE-2020-1893	3 Mar 202015:15	–	nvd
OpenVAS	HHVM Multiple Vulnerabilities (Mar 2020)	6 Mar 202000:00	–	openvas
OSV	UBUNTU-CVE-2020-1893	3 Mar 202015:15	–	osv
Prion	Design/Logic Flaw	3 Mar 202015:15	–	prion
RedhatCVE	CVE-2020-1893	22 May 202517:41	–	redhatcve
UbuntuCve	CVE-2020-1893	3 Mar 202015:15	–	ubuntucve
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2020-1893	10 Sep 202500:00	–	nessus

NVD

Node

facebook hhvmRange<4.8.7

facebook hhvmRange4.9.0–4.32.0

facebook hhvmRange4.33.0–4.38.0

facebook hhvmMatch4.39.0

facebook hhvmMatch4.40.0

facebook hhvmMatch4.41.0

facebook hhvmMatch4.42.0

facebook hhvmMatch4.43.0

facebook hhvmMatch4.44.0

facebook hhvmMatch4.45.0

[
  {
    "product": "HHVM",
    "vendor": "Facebook",
    "versions": [
      {
        "status": "affected",
        "version": "4.45.1"
      },
      {
        "status": "affected",
        "version": "4.45.0"
      },
      {
        "status": "affected",
        "version": "4.44.1"
      },
      {
        "status": "affected",
        "version": "4.44.0"
      },
      {
        "status": "affected",
        "version": "4.43.1"
      },
      {
        "status": "affected",
        "version": "4.43.0"
      },
      {
        "status": "affected",
        "version": "4.42.1"
      },
      {
        "status": "affected",
        "version": "4.42.0"
      },
      {
        "status": "affected",
        "version": "4.41.1"
      },
      {
        "status": "affected",
        "version": "4.41.0"
      },
      {
        "status": "affected",
        "version": "4.40.1"
      },
      {
        "status": "affected",
        "version": "4.40.0"
      },
      {
        "status": "affected",
        "version": "4.39.1"
      },
      {
        "status": "affected",
        "version": "4.39.0"
      },
      {
        "status": "affected",
        "version": "4.38.1"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "4.33.0",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "4.32.1"
      },
      {
        "lessThan": "unspecified",
        "status": "affected",
        "version": "4.9.0",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "4.8.7"
      },
      {
        "lessThanOrEqual": "4.8.6",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
github	www.github.com/facebook/hhvm/commit/bd586671a3c22eb2f07e55f11b3ce64e1f7961e7
hhvm	www.hhvm.com/blog/2020/02/20/security-update.html

21 Nov 2024 05:11Current

7.6High risk

Vulners AI Score7.6

CVSS 25

CVSS 3.17.5

EPSS0.00609

CWE-125